In case of a security breach, cloud providers must have an incident response process that includes procedures for containing the incident and notification of Covered Entities in accordance with HITECH.
If you’re a Covered Entity under HIPAA, you may be torn between moving your data into the cloud or continuing to maintain it in your own data center. Either way, you must be sure you’re complying with HIPAA requirements.
For highly regulated industries like healthcare with strict compliance requirements, the cloud presents a particular challenge. “When it comes to the cloud, privacy and security is a big deal for Covered Entities,” says Von Williams, security analyst for Logicalis. “While it remains the ultimate responsibility of the Covered Entity to comply with HIPAA, there are policies and procedures that a cloud provider can have in place to lift the burden of securing at-rest and in-transit data from the shoulders of the Covered Entity.” The key, Williams says, is in knowing what to look for.
To help IT pros assess a potential cloud provider’s HIPAA readiness, Logicalis has developed a 10-point checklist addressing privacy and security of healthcare data.
Top 12 Job Search Sites for IT Professionals Top job boards providing job search, resume advice, survival tips and job-hunting guidance.
Top Five Server Monitoring Battles — and How You Can Win Them Learn how to meet the most pressing challenges administrators face in ensuring optimal server performance.
10 Handy Gadgets for Your Windows 7 Desktop Add functionality to your Windows 7 desktop with these gadgets.
An eWEEK Property
Copyright 2020 Quinstreet Inc. All Rights Reserved.
Advertiser Disclosure: Some of the products that appear on this site are from companies from which QuinStreet receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. QuinStreet does not include all companies or all types of products available in the marketplace.