Solved

HIPPA Compliance - How can we get started?

Posted on 2011-09-27
2
276 Views
Last Modified: 2012-05-12
Good evening,

We have been told that our server and workstations need to be HIPPA compliant. I have searched for a list of guidelines for System Administrators but have not been successful in finding anything that doesn't require purchase of an application, etc...

Is there a good resource that provides guidelines and recommendations for putting an action plan together to make our systems compliant?

Any suggestions will be greatly appreciated.

Thanks
0
Comment
Question by:Poly11
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 13

Accepted Solution

by:
khairil earned 500 total points
ID: 36714750
HIPAA is related to medical related data privacy which means anything that related to gather, process or outputting medical records must comply with certain guidelines that defined by HIPAA.

Like ISO, ITIL, HIPAA present guidelines how to the situation must be, not how exactly in technical term the configuration of the system being done - in other words it does spell what it needs but not how to do it.

I attach here, the public publication of National Institude of Standards and Technology US. Just like ISO, most of the situation are based on questions.

This document is general guidelines, the will not go detail on the implementations. So many vendor create tools or do consultation based on the guidelines - which why when you search the web, most result are about selling product or consultation.

If you are serious, then go get a book on it, read and understand, this is the good one to start, http://www.amazon.com/Practical-Guide-Privacy-Security-Compliance/dp/0849319536#_


SP-800-66-Revision1.pdf
0
 

Author Closing Comment

by:Poly11
ID: 36954622
Thank you, the book has all of the information I need to get started!
0

Featured Post

Surfing Is Meant To Be Done Outdoors

Featuring its rugged IP67 compliant exterior and delivering broad, fast, and reliable Wi-Fi coverage, the AP322 is the ideal solution for the outdoors. Manage this AP with either a Firebox as a gateway controller, or with the Wi-Fi Cloud for an expanded set of management features

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

IT certifications are a concrete representation of continual learning on the part of the candidate.  Continual learning is necessary for the long term success of an IT professional, but are IT certifications the right path for you?
Many old projects have bad code, but the budget doesn't exist to rewrite the codebase. You can update this code to be safer by introducing contemporary input validation, sanitation, and safer database queries.
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question