Ten-point Checklist to Find out if Your Cloud Provider Is HIPAA-ready - Slide 2

Share  
1  |  2  |  3  |  4  |  5  |  6  |  7  |  8  |  9  |  10  |  11  |  12
Next Next

Your cloud provider must have a security program that meets the specific policies and procedures required by HIPAA.

Topics : Unisys, Stimulus Package, Security Breaches, Symantec, Electronic Surveillance

If you’re a Covered Entity under HIPAA, you may be torn between moving your data into the cloud or continuing to maintain it in your own data center. Either way, you must be sure you’re complying with HIPAA requirements. 

For highly regulated industries like healthcare with strict compliance requirements, the cloud presents a particular challenge.  “When it comes to the cloud, privacy and security is a big deal for Covered Entities,” says Von Williams, security analyst for Logicalis.  “While it remains the ultimate responsibility of the Covered Entity to comply with HIPAA, there are policies and procedures that a cloud provider can have in place to lift the burden of securing at-rest and in-transit data from the shoulders of the Covered Entity.”  The key, Williams says, is in knowing what to look for.

To help IT pros assess a potential cloud provider’s HIPAA readiness, Logicalis has developed a 10-point checklist addressing privacy and security of healthcare data.

 

More Slideshows

Security28-290x195 Nine Questions to Ask When Selecting a Security Vendor

You need it. They claim to have it. What questions should you be asking as you hunt for the "just right" vendor to help you defend against the most sophisticated and determined adversaries?  ...  More >>

LogRhythmHeartbleed0x Heartbleed: Eight Tips and Strategies for Keeping Safe

One of the most dangerous IT security threats of all time emerged recently -- a bug called Heartbleed. Here are eight tips for keeping your data safe. ...  More >>

Security27-290x195 Seven Key Components to Start Your Incident Response Plan

Regardless of the size of an enterprise or its industry, organizations must create and implement an incident response program to effectively and confidently respond to current and emerging cyber threats. ...  More >>

Subscribe to our Newsletters

Sign up now and get the best business technology insights direct to your inbox.