Phase 2 HIPAA Audits Prep

Phase 2 HIPAA Audits Prep

Phase 2 HIPAA Audits Prep Phase 2 HIPAA Audits have officially begun. You may know that the OCR is gathering information to determine which covered entities and business associates will be included in the auditee pool. If you haven’t already prepared for Phase 2 HIPAA Compliance, knowing where to begin may seem a bit overwhelming. … Read more

Creating a Compliance Culture

Wondering how to create a positive compliance culture within your company?  We’re here to help companies make managing compliance, well, manageable. We’ve defined the role and responsibilities of the Chief Compliance Officer. We’ve helped delineate what a Compliance Management System (CMS) is all about. We are now here to share the next best kept industry … Read more

Security Awareness Training

Security Awareness Training

Security awareness training for employees is a critical component of compliance and security in your organization. The risk of an employee not understanding the potential security threats facing them as a frontline target could be just the opening that an attacker needs to create a security breach. You are only as strong as your weakest … Read more

Cloud Contract Review Questions

It’s cloud contract review time. You should know the right cloud contract review questions to ask, right? Well, first, take a good look at the provider’s cloud service-level agreement (SLA). What is an SLA? An SLA defines what the customer will receive. It’s a contract between you, the customer, and a service provider (either internal or … Read more

Securing PII Under FERPA

March Is Governmental Purchasing Month in VA

With a vast amount of personal and private data available on networks throughout the world, it’s easy to understand just how necessary and important securing PII (personally identifiable information) is today. Let’s look at student records and the FERPA-compliant world of higher education, for example. A student’s entire education file, filled with academic performance data and … Read more

Secure Web App Best Practices

Maintaining a secure web environment is extremely important in today’s technological climate. So, let’s look at secure web app best practices. Performing regular scans and tests of your security posture is best practice and one that is rapidly becoming an essential piece to maintaining security at your organization. Web applications have become a common target … Read more

PCI DSS Requirements 3 and 4

Questions about PCI DSS Requirements 3 and 4? You’ve come to the right place. As you may know, AISN is a PCI compliant cloud hosting provider. Previously, we addressed questions about PCI DSS Requirements 1 and 2. Today, we’re reprinting highlights from an exclusive online interview sponsored by our valued partner, KirkpatrickPrice. In this interview, … Read more

Avoiding a Data Breach Caused by Medical Devices

In headlines of late, the terms “data breach” and “healthcare organization” aren’t strangers, and now relative to that, avoiding a data breach caused by medical devices is becoming a hot topic. Recent studies and investigations done by cybersecurity professionals in the industry have found that cyber hackers are beginning to use medical device vulnerabilities as … Read more

Call Monitoring Compliance

Call Monitoring Compliance

It’s important to analyze and fully understand the areas of risk as the CFPB continues to closely supervise the collections environment and call monitoring compliance. One of the biggest risks to a collection agency is communication with consumers, making the monitoring of calls a very telling practice.  An effective call monitoring program is a critical … Read more

Payment Card Security Data Flow

Payment Card Security

DATA FLOW DYNAMIC OF PAYMENT CARD SECURITY In March, the Electronic Transactions Association (ETA), a global association which represents those in the payments space, announced a partnership with the PCI Security Standards Council (PCI SCC). The new partnership brought the two together at TRANSACT 15, ETA’s annual conference, to present the industry with the most recent … Read more