What is HIPAA
The Health Insurance Portability and Accountability Act, HIPAA, is the United States legislation that requires organizations to provide security and data privacy provisions to safeguard medical information. Specifically, the HIPAA Security Rule establishes standards to protect individuals’ online personal health information used by a covered entity, such as healthcare providers.
HIPAA utilizes elements of the United States National Institute of Standards and Technology (NIST) 800 series to address the following areas of cyber risk
1. Administrative Safeguards
2. Physical Safeguards
3. Technical Safeguards
4. Organizational, Policies and Procedures and Documentation Requirements
5. Basics of Risk Analysis and Risk Management
6. Security Standards: Implementation for the Small Provider
SubRosa Cyber Solutions offers specific services tailored to assist covered entities to become or maintain compliance with the cybersecurity and privacy elements of HIPAA, regardless of the size of your organization. We also offer specific solutions for small to mid-sized organizations who need assistance complying with HIPAA standards.
For more information on our small to mid-size business solutions, please visit the Small Business Solutions page.