Cybersecurity and HIPAA Compliance: 5 Ways to Master Both

Published in Member Communities on February 06, 2019

One single attack on your data network can cause chaos to your entire healthcare organization. One update not initiated in time or routine patching skipped can lead to compromised patient data. In addition to clients placing their trust in healthcare organizations to keep them in good health, they are also trusting them to keep their private information protected. In this day and age, the two should go hand in hand. Here are 5 ways to be sure you are mastering both.

  1. Educate Employees

    Your employees likely understand the importance of HIPAA compliance. They have undergone training on how to communicate about patient’s health concerns with others on their healthcare team. However, they may not fully understand the risks they pose to clients when it comes to cybersecurity. One of the best defenses to a cyber attack is employee training. Staff who handle electronically protected health information should be made aware of the risks that can be posed to patients through seemingly harmless behaviors.

  2. Create a System to Bring Your Own Device (BYOD)

    If your employees bring their own mobile devices to and from work, this is certainly a topic of security to be addressed. If employees communicated to one another about patients through their phones, without installing the appropriate security measures, this can be a significant breach of trust and candy to hackers. When they access the network through their device, you need to be certain multi-factor authentication is in place as well as a secure application in which they can access the network. 

  3. Initiate a Physical Defense

    Each time a patient is seen, information about their visit is entered into the computer. Employees need to physically protect these devices by logging out of the system when it is not being used to ensure information is not taken. A protective measure you can take for this is to locks on all screens and devices when they are not being used.

  4. Implement and Review Technical Security

    You may already have a defense system implemented, but it is equally important to continually tighten up your network security. Consider installing encryption software. This encrypts any data sent within the organization, so if a hacker gets ahold of it, it would be nearly impossible to crack. It’s important to remember that unless both the sender and receiver (for example, over email) have encrypted software, it is not adequately protected.

  5. Run Routine Audits
    Stay ahead of the curve by evaluating, recording and examining all security protocols. Have an expert in cybersecurity not only take a look at what you are doing right, but what other vulnerabilities your facility has. 

Protect your organization, your employees and patients by placing HIPAA and cybersecurity at the top of your radar. Reach out today for a vulnerability assessment to see how VGM Technologies can help uphold HIPAA compliance.


comments powered by Disqus

From Our Experts

Heartland Session Sneak Peek: Revenue Cycle Management – What Are Your Averages? thumbnail Heartland Session Sneak Peek: Revenue Cycle Management – What Are Your Averages? At this year's Heartland Conference, please join Craig Douglas and Ronda Buhrmester from VGM, along with a panel of your industry peers, as they discuss and answer these questions as well as other best practices and potential solutions to help your business thrive. COVID-19 Safety Precautions For Heartland 2021 thumbnail COVID-19 Safety Precautions For Heartland 2021 Before we bring our membership community together for Heartland's 20th anniversary conference, we do have some safety precautions we are implementing during the conference. Changing the Customer Service Landscape to Improve Health Outcomes: A Holistic Approach to Serving Patients thumbnail Changing the Customer Service Landscape to Improve Health Outcomes: A Holistic Approach to Serving Patients Originally featured in "VGM Playbook: How Serving Your Customer Serves You," VGM member Cheryl Henninger, BHA, RTT, director of operations, shares how Geroulds Healthcare Center/Community Cares Health Solutions has created new service lines for their core business and provides holistic patient assessments to identify patient needs and navigate patients to the appropriate service lines within the organization—or even to appropriate resources outside of Gerould's scope of service. The Tipping Point of Respiratory Outcomes in the Home thumbnail The Tipping Point of Respiratory Outcomes in the Home VGM's Dave Lyman talks with CEO of Encore Health Care, Zach Gantt, about the importance of respiratory outcomes in the DME world. An Inside Look with Clint, Episode 9: VGM Heartland thumbnail An Inside Look with Clint, Episode 9: VGM Heartland Clint sat down with Sarah Conger, vice president of corporate projects with VGM, to discuss the 2021 VGM Heartland Conference coming up on September 13-15, 2021 and what attendees can expect at this year's event. A New Infant Monitoring Program and Technology thumbnail A New Infant Monitoring Program and Technology VGM and Associates' VP of Sales, Dave Lyman, talks with Founder and CEO of Circadiance, David Groll, about a new infant monitoring technology and program. They also discuss why all DMEs should be providing infant monitoring. www.circadiance.com All Things VGM Heartland 2021 thumbnail All Things VGM Heartland 2021 Listen to find out what is new coming to Heartland, how the committee is keeping attendees, vendor partners, and employee owners safe amidst COVID-19, educational opportunities, and this year's farewell event! Meet your 2021 O&P Woman of the Year Finalists thumbnail Meet your 2021 O&P Woman of the Year Finalists OPGA received so many great submissions for this year's O&P Woman of the Year. Congratulations to our 2021 finalists!