Alex Crittenden
December 8, 2010
The far-reaching nature of the PCI DSS and its sister standard, the PA DSS, requires that the healthcare community not ignore some critical industry mandates.
READ POST
Compliance
PCI PA-DSS in Healthcare – Part 2
Posts tagged 'healthcare'
Compliance
PCI PA-DSS in Healthcare – Part 1
Alex Crittenden
November 5, 2010
I am sure that you are aware of the Payment Card Industry Data Security Standards (PCI DSS), a very broadly applicable security standard that concerns itself with all aspects and environments that deal with credit card information. What you might not be fully aware of (or may not fully understand the implications of) is the Payment Application Data Security Standard (PA-DSS.)
READ POST
Compliance
Mayo Clinic’s Solution for Social Media Challenges
Yan Kravchenko
September 9, 2010
The Mayo Clinic recently launched Mayo Clinic Center for Social Media, intended to help train medical practitioners and patients about the use of social media to improve patient care.
READ POST
Compliance
Does DLP Help Solve HIPAA Concerns?
Yan Kravchenko
September 3, 2010
One of the most promising technologies for automatically enforcing compliance with sensitive data handling practices is DLP technology and it is quickly gaining popularity and adoption across many industries.
READ POST
Security Industry
Is PCI driving the development of information security within healthcare?
Deke George
June 14, 2010
I like to watch industries evolve in how they deal with information security. It was interesting to watch retail evolve as PCI got more organized. The PCI Council put together the DSS with dates and penalties for breaches and non-compliance, …
READ POST
Compliance
Observations from HIMSS
Deke George
March 10, 2010
I was at the Healthcare Information and Management Systems Society (HIMSS) national conference last week in Atlanta. Overall, the conference wasn’t much different than past years. From an information security perspective the presentations and conversations were limited, but there were …
READ POST
Compliance
HITRUST Part 4 Looking Forward
Yan Kravchenko
January 13, 2010
In this conclusion of the HITRUST blog series, I would like to discuss some definite opportunities and challenges that HITRUST is likely to face.
READ POST
Compliance
HITRUST Part 3 Certification Explained
Yan Kravchenko
December 30, 2009
As a continuation of the HITRUST blog series, in this post I would like to explore the concept of certification, and what it means.
READ POST
Compliance
What is HITRUST? – Part 1
Yan Kravchenko
December 4, 2009
HITRUST is rapidly gaining popularity in the healthcare and security consulting fields, and NetSPI is investing significant resources in developing services that will assist clients in taking advantage of the new Common Security Framework (CSF). As a way of introducing this new development, I will write a series of blog posts intended to familiarize anyone interested with just what HITRUST and the CSF are all about.
READ POST