Comments for Third Rock https://thirdrock.com/ Building a Cyber Confident World Thu, 27 Jun 2019 01:57:08 +0000 hourly 1 https://wordpress.org/?v=6.5.8 Comment on HIPAA – Standard Operations for Business by Frank Ruelas https://thirdrock.com/blog/2017/06/08/hipaa-standard-operations-for-business/#comment-5076 Fri, 09 Jun 2017 22:16:22 +0000 http://thirdrock.com/?p=3885#comment-5076 Thank you!

So often I hear people complaining about HIPAA in that it needs to be upgraded, modified, etc…and then when I am privy to what BAAs are doing to comply with HIPAA I see most of this comes from folks that don’t comply with HIPAA and are looking for some type of “sounds good” reason to move to a HIPAA 2.0.

In my view, with respect Business Associates (BAs) and HIPAA…which first people out there need to stop telling BAs that they need to comply with all of HIPAA…the Security Rules represent what is often present in most well run IT shops.

It’s that simple and basic. Now are there people that may find or use the idea that HIPAA is overly complex and burdensome for some other means? Of course…I hear it on webs and read it on blogs every day.

]]> Comment on Knock, Knock – We’re here to perform an onsite HIPAA audit. by Robert Felps https://thirdrock.com/blog/2017/01/05/knock-knock-were-here-to-perform-an-onsite-hipaa-audit/#comment-5048 Thu, 12 Jan 2017 15:27:16 +0000 http://thirdrock.com/?p=2773#comment-5048 In reply to Julia.

We initially heard about this from one of our partner HIPAA consultants, whom heard it in a HIPAA CE session. We then heard the same info from another HIPAA consultant involved with HHS OCR audits. Recently we heard it from a HIPAA law firm. No confirmation from the OCR though, so it’s worth the “ink” with which it’s written. 🙂 But, with audit submissions now required to be electronic the electronic auditing will soon follow, then it’s just how they will automate the auditing.

]]> Comment on Knock, Knock – We’re here to perform an onsite HIPAA audit. by Julia https://thirdrock.com/blog/2017/01/05/knock-knock-were-here-to-perform-an-onsite-hipaa-audit/#comment-5047 Thu, 12 Jan 2017 01:08:52 +0000 http://thirdrock.com/?p=2773#comment-5047 Gosh! Where does the information about 2019 come from?

]]> Comment on Cyber Breach – No One is Immune by Christy https://thirdrock.com/blog/2015/09/01/cyber-breach-no-one-is-immune/#comment-5044 Tue, 01 Sep 2015 18:40:21 +0000 http://thirdrock.com/?p=994#comment-5044 It seems to me that most health organizations are so behind that it is a treasure trove for hackers. I work as a temp nurse for several different clinics. I was absolutely shocked to see a front desk nurse put a personal USB into the computer she was working on to copy over music. I just hope that they had some kind of protection, but I doubt it. It does not even seem they were making much of an effort.

Anyway great article.

]]> Comment on The Breach is Only The Beginning by Doug Pertier https://thirdrock.com/blog/2015/07/22/the-breach-is-only-the-beginning/#comment-5043 Wed, 22 Jul 2015 21:40:29 +0000 http://thirdrock.com/?p=914#comment-5043 I have to say that while we most certainly tried to prevent breaches where I work, these statistics are really scary. It seems that while we have a firewall and anti-virus, there is more to be done to find out who gets past them. Which by what I am reading, is a lot.

]]> Comment on HIPAA/HITECH Security Risk Analysis Myths and Facts by Doug M. https://thirdrock.com/blog/2015/07/13/hipaahitech-security-risk-analysis-myths-and-facts/#comment-5042 Wed, 15 Jul 2015 18:14:38 +0000 http://thirdrock.com/?p=452#comment-5042 Great post and very true. We were shocked what we found when we went through a Risk Assessment last year.

]]>