signaltracker
asked on
HIPAA and OWA
I have a physicians office who want to be able to get their email via OWA. Their set up is (starting from the wild side)
Internet-DSL- Sonic Wall Appliance TZ170-Server (Win 2003,Exchange, Patient Data all on one server).
I am concerned about exposing the patient data by opening OWA since all of it is on one server. I have recommended they put an ISA server between the Sonic Wall and Server. The Administrator of the practice has asked other Doctors (the worst place to get security information) about what they are doing and of course the answers are all over the place. So I came to the experts to see what their opinion is. Can I get some ideas about this and I am too cautious? If there is a HIPAA patient data violation, I dont want fingers pointed at me as being too lax in my security.
Internet-DSL- Sonic Wall Appliance TZ170-Server (Win 2003,Exchange, Patient Data all on one server).
I am concerned about exposing the patient data by opening OWA since all of it is on one server. I have recommended they put an ISA server between the Sonic Wall and Server. The Administrator of the practice has asked other Doctors (the worst place to get security information) about what they are doing and of course the answers are all over the place. So I came to the experts to see what their opinion is. Can I get some ideas about this and I am too cautious? If there is a HIPAA patient data violation, I dont want fingers pointed at me as being too lax in my security.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Ahhh, yeah a lot of people actually use SBS. I'm running all windows 2000 2003 enterprise machines here though.
Anytime, yeah I know where you are coming from about the selling them on new servers, *wheh*
That would probably be the cheapest route, but i'm sure others will have other suggestions probably though. Can't never hurt to get more opinions for sure :)
regards,
kshays
Anytime, yeah I know where you are coming from about the selling them on new servers, *wheh*
That would probably be the cheapest route, but i'm sure others will have other suggestions probably though. Can't never hurt to get more opinions for sure :)
regards,
kshays
ASKER
Thanks for all the info though, it would be helpful in a different configuration that I have with other customers so it is good advice.
Joe
Joe
You're welcome.
Thanks for the points btw.
Good luck,
kshays :)
Thanks for the points btw.
Good luck,
kshays :)
ASKER
Thanks.
Joe