In light of the recent news of the data breach at Anthem Blue Cross/Blue Shield, risk assessment is our theme today. We welcome this guest post from our partner, KirkpatrickPrice…. Performing a Risk Assessment is a critical component of any Information Security Program. It’s mandated by several frameworks (SSAE 16, SOC 2, PCI DSS, … Read more
Guaranteeing hosting compliance. It’s pretty much something that AIS Network has always done, and it’s a clear service benefit. Our compliance with multiple security and regulatory standards such as HIPAA/HITECH, FISMA, FERPA, PCI DSS, GLBA, SOX and others repeatedly saves our clients time and money and helps them to avoid costly litigation over compliance errors. Up until … Read more
If information security trends from last year are at all telling, 2015 will be a very important year to pay close attention to the security of your sensitive data. Here are 5 Security Tips to keep in mind when protecting yourself and your organization in 2015. Cybersecurity – Organized crime in the 21st century has a … Read more
It’s National Data Privacy Day! Did you know that data privacy is so important that it gets its own very special day — annually? Well, perhaps we won’t be baking a cake and hauling out the party hats, but we will celebrate that the day itself is an international awareness effort to make protecting privacy and … Read more
Framework updates for HIPAA, ISO 27001, FISMA and PCI DSS have been the hot topic of discussion over the last year. As the world continues to be pressured with information security challenges, over the last 12 months, major compliance frameworks have recently been updated or are currently updating. In today’s current climate, incidents and breaches are … Read more
Each year, businesses and governments lose billions of dollars due to data loss. Sadly, these organizations could have prevented their losses if only they’d had a secure online backup and recovery plan, which ensures business continuity in the aftermath of a disaster. Unrecoverable data loss impacts customers and employees and can mean serious repercussions for … Read more
Preventing PHI Breaches: Five Tips to Ensure They Don’t Become Your Achilles Heel This article first ran as a featured guest post in Electronic Health Reporter on September 22, 2014. The theft of 4.5 million medical records by Chinese hackers recently, coupled with the news that as-yet unidentified hackers were able to penetrate the U.S. government’s … Read more
National Health IT Week 2014, which is this week, celebrates the value of IT and its contribution to healthcare providers, associations and non-profit organizations, state and regional extension centers, corporations and colleges and universities across the nation. In honor of National Health IT Week, I thought I would share with you the story of one of … Read more
All HIPAA/HITECH-regulated organizations in the process of selecting a HIPAA-compliant cloud hosting provider should expect their chosen vendor to sign a HIPAA/HITECH Business Associate Agreement (BAA).* But here’s the rub. It’s easy to find a cloud hosting provider who says, “Yeah, we’ll sign a BAA.” However, it’s quite another to find a provider who is … Read more
By Terry Engelstad AIS Network VP, Network Operations Last month, a client emailed with the following question, “We have had reports of one of our external SharePoint users that ended up with a crypto locker virus. It is possible that documents from this infected computer got uploaded into SharePoint. In cases like this … Read more