The HHS Office for Civil Rights, once again, is promising that its expanded HIPAA privacy/security/breach notification audit program will soon start.

There are a lot of issues OCR looks for during an audit and its protocols are available here. But, as the cyber threat continues to intensify, the feds are taking a closer look at the security posture of healthcare organizations’ business associates and subcontractors. “Our vendors might be the path of least resistance for these incidents,” said Joseph Kirkpatrick, managing partner in the security compliance assessment services unit of accounting firm KirkpatrickPrice, during a presentation at last week’s AHIMA 2015 Convention.

Register or login for access to this item and much more

All Health Data Management content is archived after seven days.

Community members receive:
  • All recent and archived articles
  • Conference offers and updates
  • A full menu of enewsletter options
  • Web seminars, white papers, ebooks

Don't have an account? Register for Free Unlimited Access