Presentation is loading. Please wait.

Presentation is loading. Please wait.

East Carolina University

Published byJulianna Alexander Modified over 6 years ago

Similar presentations

Presentation on theme: "East Carolina University"— Presentation transcript:

1 East Carolina University
HIPAA Security Office

2 Objectives HIPAA Security Rule Security Rule Principles
Basic Security Awareness Practices & Wireless Guidelines Portable Devices Secure Messaging

3 Background Health Insurance Portability and Accountability Act of 1996
Federal standard for privacy and security of protected health information (PHI) Security Rule: ensure confidentiality, integrity and availability of ePHI (that a covered entity creates, receives or transmits) Sets guidelines for protection against: Threats or hazards of integrity and security of ePHI, unauthorized use and disclosures

4 Security Rule Principles
Administrative Safeguards - Policies & Procedures Physical Safeguards - Controlling physical availability Technical Safeguards - Controlling access and protecting electronic communications

5 Basic Security Awareness
Use strong passwords, per ECU policy Lock your computer when not in use Guard your display Do not install personal or unauthorized software Lock sensitive storage areas Update anti-virus

6 Basic Security Awareness
Identify and report potential security incidents Do not store ePHI unless it is a University approved method Maintain an inventory of systems, applications, devices that contain PHI. Communicate this to the ECU HIPAA Security Office Follow ECU policies and procedures for purchasing and/or updating new health information systems, applications, or devices.

7 E-Mail and Wireless Guidelines
Do not send ePHI over unless it is encrypted: ECU to ECU is encrypted ECU to Vidant or other entity is not encrypted Do not access or send ePHI over a wireless network unless the data is encrypted prior to transmission.

8 Portable Device Security
Portable devices are NOT secure for storing ePHI Must be encrypted Must have a passcode Portable devices must always by physically and technically secured. Turn wireless interfaces off until needed Any loss, theft, or unauthorized use must be reported to ECU ITCS immediately

9 Secure Messaging Cortext Currently ECU providers
Password required for access Potential roll out to other staff

10 ECU HIPAA Security HIPAA Security is everyone’s responsibility
No single security measure will provide total security Everyone must be knowledgeable of policies and procedures. Security is an ongoing process

11 Notification of Security Incidents
Report incidents to the University Help Desk The Help Desk can also provide information regarding purchasing, installing, and using software. or

12 Contact Information ECU HIPAA Security Officer Michelle C. Evans, MPA, CHC, CHPC (252) HIPAA Security Analysts Brad Sikes Tim Smith Complete HIPAA Privacy and Security Policies are available at:

Download ppt "East Carolina University"

Similar presentations

Darton College Information Systems Use Policies. Introduction Dartons Information Systems are critical resources. The Information Systems Use Policies.

Darton College Information Systems Use Policies. Introduction Dartons Information Systems are critical resources. The Information Systems Use Policies.
HIPAA Security.

HIPAA Security.
HIPAA Security Standards Emmanuelle Mirsakov USC School of Pharmacy.

HIPAA Security Standards Emmanuelle Mirsakov USC School of Pharmacy.
Hipaa privacy and Security

Hipaa privacy and Security
1. As a Florida KidCare community partner families entrust you to not only help them navigate the Florida KidCare system but to keep the information they.

1. As a Florida KidCare community partner families entrust you to not only help them navigate the Florida KidCare system but to keep the information they.
HIPAA Privacy Training. 2 HIPAA Background Health Insurance Portability and Accountability Act of 1996 Copyright 2010 MHM Resources LLC.

HIPAA Privacy Training. 2 HIPAA Background Health Insurance Portability and Accountability Act of 1996 Copyright 2010 MHM Resources LLC.
HIPAA Security Training 2005

HIPAA Security Training 2005
Information Risk Management Key Component for HIPAA Security Compliance Ann Geyer Tunitas Group 209-754-9130

Information Risk Management Key Component for HIPAA Security Compliance Ann Geyer Tunitas Group
HIPAA Health Insurance Portability and Accountability Act.

HIPAA Health Insurance Portability and Accountability Act.
Health Insurance Portability and Accountability Act (HIPAA)HIPAA.

Health Insurance Portability and Accountability Act (HIPAA)HIPAA.
HIPAA Security Regulations Jean C. Hemphill Ballard Spahr Andrews & Ingersoll, LLP November 30, 2004.

HIPAA Security Regulations Jean C. Hemphill Ballard Spahr Andrews & Ingersoll, LLP November 30, 2004.
HIPAA: FEDERAL REGULATIONS REGARDING PATIENT SECURITY.

HIPAA: FEDERAL REGULATIONS REGARDING PATIENT SECURITY.
Topics Rule Changes Skagit County, WA HIPAA Magic Bullet HIPAA Culture of Compliance Foundation to HIPAA Privacy and Security Compliance Security Officer.

Topics Rule Changes Skagit County, WA HIPAA Magic Bullet HIPAA Culture of Compliance Foundation to HIPAA Privacy and Security Compliance Security Officer.
© 2011 The McGraw-Hill Companies, Inc. All rights reserved. 2.5 HIPAA Legislation and its Impact on Physician Practices 2-15 The Health Insurance Portability.

© 2011 The McGraw-Hill Companies, Inc. All rights reserved. 2.5 HIPAA Legislation and its Impact on Physician Practices 2-15 The Health Insurance Portability.
HIPAA Security Risk Overview Lynne Shoemaker, RHIA, CHP, CHC OCHIN Integrity Officer Daniel M. Briley, CISSP, CIPP Summit Security Group.

HIPAA Security Risk Overview Lynne Shoemaker, RHIA, CHP, CHC OCHIN Integrity Officer Daniel M. Briley, CISSP, CIPP Summit Security Group.
Invasion of Smart Phones in Clinical Areas Chrissy Kyak Privacy Officer University of Maryland Upper Chesapeake Health.

Invasion of Smart Phones in Clinical Areas Chrissy Kyak Privacy Officer University of Maryland Upper Chesapeake Health.
CAMP Med Building a Health Information Infrastructure to Support HIPAA Rick Konopacki, MSBME HIPAA Security Coordinator University of Wisconsin-Madison.

CAMP Med Building a Health Information Infrastructure to Support HIPAA Rick Konopacki, MSBME HIPAA Security Coordinator University of Wisconsin-Madison.
1 Electronic Information Security – What Researchers Need to Know University of California Office of the President Office of Research May 2005.

1 Electronic Information Security – What Researchers Need to Know University of California Office of the President Office of Research May 2005.
ELECTRONIC MEDICAL RECORDS By Group 5 members: Kinal Patel David A. Ronca Tolulope Oke.

ELECTRONIC MEDICAL RECORDS By Group 5 members: Kinal Patel David A. Ronca Tolulope Oke.
HIPAA Privacy & Security EVMS Health Services 2004 Training.

HIPAA Privacy & Security EVMS Health Services 2004 Training.

Similar presentations

Ads by Google