THE HEALTH INSURANCE PORTABILITY AND ACCOUNTABILITY ACT OF 1996HIPAA aimed to improve the efficiency and effectiveness of the nationwide healthcare system. A large part of HIPAA deals with the handling of personal health information (PHI). The Department of Health and Human Services (HHS) requires that HIPAA-covered entities enter into business associate agreements (BAAs) with any third party that handles PHI.
We will help you reach HIPAA compliance so you can be sure your health data is safe–and avoid being in violation and paying steep fines.
Any organization that works in healthcare in any capacity and/or handles protected health information (PHI) must be HIPAA compliant. Health service providers, health care providers, clearinghouses, and their business associates need to follow a HIPAA compliance checklist to safeguard private and sensitive patient data.
Sets national standards regarding patients’ rights to access their healthcare data. Calls for the protection of PHI by three types of covered entities: health plans, healthcare clearinghouse, and healthcare providers who conduct standard healthcare transactions electronically.
Sets national standards for protecting the confidentiality, integrity, and availability of electronic protected health information. This includes setting standards for computer and network access to PHI.
Sets standards for procedures and reporting that covered entities must complete in the event of a data breach. The two classes of breaches are minor (fewer than 500 individuals affected), and meaningful (more than 500 individuals affected).
Provides standards for the enforcement of the Administration Simplification Rules, which ensure consistent electronic communications across the nation’s healthcare system by mandating use of standard transactions, code sets, and identifiers. These operating rules are designed to further improve the efficiency of data exchange.
Limits HIPAA protections to 50 years after an individual’s death. This rule implements most of the privacy and security provisions of the Health Information Technology for Economic and Clinical Health (HITECH) Act and significantly extends the reach and limits of HIPAA.
We’ll answer all your questions and help you understand the cybersecurity practices for HIPAA and all the bureaucratic mumbo-jumbo in your contract.
We’ll do a gap analysis to identify gaps in controls and procedures relevant to the HIPAA alignment.
We’ll formulate a roadmap that charts the initiatives and timeline necessary to mature your processes and procedures.
Right Hand Technology Group is CompTIA Security Trustmark+™ certified and has been ranked as one of the top Managed Service Providers in the world. Our experienced staff of Cybersecurity Professionals and Security Engineers have been working with various industries on cybersecurity for more than 20 years.
The Certified Information Systems Security Professional is an information security certification with extremely high standards. Less than 132,000 people worldwide had this certification at the end of 2018.
It has also been formally approved by the DOD and is globally recognized in the field of IT security.
It covers the following topics:
Security and Risk Management
Asset Security
Security Architecture and Engineering
Communication and Network Security
Identity and Access Management (IAM)
Security Assessment and Testing
Security Operations
Software Development Security
This a system engineer certification and tests the user’s knowledge on the following topics:
Windows
SQL Server
Exchange Server
SharePoint
System Center (SCCM)
Lync
The A+ Certification demonstrates that the computer technician has the skill set needed to customize, install, maintain, and operate PCs.
In addition to these certifications, Right Hand also has strategic partnerships with some of the biggest names in the industry like Microsoft, Dell, Citrix, and Fortinet.
What could be more assuring than having these industry giants on your side?
As the name suggests, this certification is for Network Engineers. Everything from the installation and maintenance to troubleshooting of networks including the understanding of all related technologies is a part of the course.
This certification shows that the technician who has passed the Microsoft exam is capable of managing, migrating, deploying, planning, and assessing the technology, security, and compliance needs associated with Microsoft Office 365.
The CompTIA Security Plus SY0-501 course provides certifications in the following topics:
Threats
Vulnerabilities
Attacks
System Security
Network Infrastructure
Access Control
Cryptography
Risk Management
Organizational Security