The recent Anthem breach is potentially the largest data breach to date in the healthcare space. When your CEO or your largest clients ask you what your plan is to prevent the same from happening to you, what are you going to tell them? Safeguarding Personally Identifiable Information (PII) is essential for avoiding a data … Read more
In light of the recent news of the data breach at Anthem Blue Cross/Blue Shield, risk assessment is our theme today. We welcome this guest post from our partner, KirkpatrickPrice…. Performing a Risk Assessment is a critical component of any Information Security Program. It’s mandated by several frameworks (SSAE 16, SOC 2, PCI DSS, … Read more
If information security trends from last year are at all telling, 2015 will be a very important year to pay close attention to the security of your sensitive data. Here are 5 Security Tips to keep in mind when protecting yourself and your organization in 2015. Cybersecurity – Organized crime in the 21st century has a … Read more
Are you effectively gathering and making use of compliance-related data? What kind of story is your data saying about your organization? Ask yourself the following questions: How are you currently measuring and reporting on complaint data? Do you have the ability to demonstrate trends by month, quarter, response time, or complaint category? What is your monthly … Read more
Framework updates for HIPAA, ISO 27001, FISMA and PCI DSS have been the hot topic of discussion over the last year. As the world continues to be pressured with information security challenges, over the last 12 months, major compliance frameworks have recently been updated or are currently updating. In today’s current climate, incidents and breaches are … Read more
Did you know that Phase 2 of the HIPAA Audit Program is expected this year? The U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) has always enforced HIPAA compliance. Recently, they announced plans to proceed with Phase 2 of the HIPAA audit program, a more proactive approach to overseeing HIPAA compliance. … Read more
Business continuity is a big deal these days, and disaster recovery plans are a key component of business continuity. Below is a brief checklist to help guide you: Business Continuity Plan (BCP) Project Approach 1. Business Impact Analysis a. Review existing business continuity capabilities: i. Evaluate the risk to business process failures ii. Identify critical … Read more
GUEST BLOG Think business continuity plans are not important? Think again. In late October 2012, Hurricane Sandy left devastation in parts of the Caribbean, Mid-Atlantic and Midwestern states, and Eastern Canada. With winds up to 80 mph, this Category 2 hurricane wreaked havoc along the eastern seaboard of the United States from Florida to Maine. … Read more
Server security. That’s usually the first thing on the minds of those in the IT world. To keep up with changing technologies, we are constantly changing and improving our security standards, so that we can remain one step ahead of malicious attackers in defending our confidential information. Royce Howard, of Global Knowledge, offers some tips … Read more
Want to know the top 10 security risks at an organization? We strive to provide the proper assurance and resources to help our clients maintain security within their organization. Recently, we held a client webinar focused on the “Top 10 Security Risks” that your auditor finds during your auditing process. Below is a summary of … Read more