Common PCI compliance gaps?  You bet!  We can identify 15 of them. The need for enhanced security is becoming more and more obvious every day. As the security landscape changes, the threats to our sensitive data become more serious, and as a result, the controls that we put in place have become stronger. We see a … Read more
The recent Anthem breach is potentially the largest data breach to date in the healthcare space. When your CEO or your largest clients ask you what your plan is to prevent the same from happening to you, what are you going to tell them? Safeguarding Personally Identifiable Information (PII) is essential for avoiding a data … Read more
In light of the recent news of the data breach at Anthem Blue Cross/Blue Shield, risk assessment is our theme today. We welcome this guest post from our partner, KirkpatrickPrice…. Performing a Risk Assessment is a critical component of any Information Security Program. It’s mandated by several frameworks (SSAE 16, SOC 2, PCI DSS, … Read more
Guaranteeing hosting compliance. It’s pretty much something that AIS Network has always done, and it’s a clear service benefit.  Our compliance with multiple security and regulatory standards such as HIPAA/HITECH, FISMA, FERPA, PCI DSS, GLBA, SOX and others repeatedly saves our clients time and money and helps them to avoid costly litigation over compliance errors. Up until … Read more
If information security trends from last year are at all telling, 2015 will be a very important year to pay close attention to the security of your sensitive data. Here are 5 Security Tips to keep in mind when protecting yourself and your organization in 2015. Cybersecurity – Organized crime in the 21st century has a … Read more
Are you effectively gathering and making use of compliance-related data? What kind of story is your data saying about your organization? Ask yourself the following questions: How are you currently measuring and reporting on complaint data? Do you have the ability to demonstrate trends by month, quarter, response time, or complaint category? What is your monthly … Read more
Framework updates for HIPAA, ISO 27001, FISMA and PCI DSS have been the hot topic of discussion over the last year. As the world continues to be pressured with information security challenges, over the last 12 months, major compliance frameworks have recently been updated or are currently updating. In today’s current climate, incidents and breaches are … Read more
Did you know that Phase 2 of the HIPAA Audit Program is expected this year? The U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) has always enforced HIPAA compliance. Recently, they announced plans to proceed with Phase 2 of the HIPAA audit program, a more proactive approach to overseeing HIPAA compliance. … Read more
By Jay Atkinson AIS Network CEO We exhibited at the 2014 ACCS Annual Conference (Association of Collegiate Computing Services of Virginia) in Charlottesville last week and it was one of our favorite shows to date. The ACCS Conference volunteers did a tremendous job.  They really take pride in the conference, make the vendors feel appreciated, and fed everybody well!  Everyone we met … Read more
GUEST BLOG By Sarah Morris, KirkpatrickPrice If you’re hosting data classified as patient health information (PHI), it’s always your responsibility to assure HIPAA compliance for PHI. In other words, take appropriate measures to comply with the HIPAA Security Rule. Beginning September 23, as a business associate of a healthcare entity, you can now be fined … Read more