e.g.Template, Wizixo, WordPress theme
Reduce business risk with HIPAA compliance-as-a-service from Intersect. Intersect offers a comprehensive solution designed to help organizations achieve and remain in HIPAA compliance. Learn more »
Intersect offers a highly differentiated HIPAA Compliance service. Intersect's technology-driven process is aimed at assuring that the achievement of HIPAA compliance isn't just a one-time event. The program is intended to prevent breaches and insure that clients remain HIPAA compliant. Read on to learn more.
The business risk associated with HIPAA compliance is high. Enforcement activity by the HHS Office for Civil Rights is elevated and the penalties aresubstantial. Much of the risk is driven by the fact that the black market value of medical records is large with a value of from $10 to $50 each. Intersect's services are designed, not only to fulfill the compliance mandate, but also to help prevent expensive breaches.
Compliance is similar to cybersecurity. It can silently vanish in an instant. Intersect's compliance service is designed to keep healthcare organizations compliant. It achieves that goal through the use of regularly scheduled, automated, recurring HIPAA Risk Analyses. The first analysis serves as a benchmark. Subsequent scans reveal changes to the network providing evidence of steps taken to correct problems as well as revealing new issues that are discovered. By continually repeating this process, compliance is maintained and breaches are prevented..
One of the larger HIPAA penalties in provides an example of how the services provided by Interect would have prevented a breach. The FBI notified St. Joseph's Healthcare that their medical records were for sale on the Internet. They had been breached three years earlier, but were unaware of the problem. The services offered by Intersect would have prevented that outcome as Intersect's solution of using assessment tools, identifying issues from regularly scheduled reports, and then remediating them would have prevented that breach and others similar to it. Those actions augmented with managed services to automate patching and updating, managing end-point protection, encrypting devices, and other best practices would have secured that environment. As it was, it was found that they had failed to conduct an evaluation in response to "environmental and operational changes," and suffered a HIPAA penalty of $2.14 million. Many reported breaches and penalties have a similar story.
When you make a decision about how strong your organization's committment is to HIPAA compliance, you should know the "price of the risk." In other words, the probable "costs" of a HIPAA violation if you are penalized following an audit. Additionally you should be aware of the statistical probabiliiy of a breach. There is a high correlation between breaches and HIPAA audits. Audits are generally triggered following a breach because of you are required to report breaches to HHS.
It is import for organizations to understand their risks so they know how much to allocate to mitigating those risks and for protection to assure that medical records are not compromised.
There has been a change in the government agency responsible for enforcing HIPAA. That transition to the HHS Office for Civil Rights has resulted in a substantial increase in the level of enforcement. The OCR has a much greater number capacity for investigations than were previously available.
Medical records are in high demand and cybercriminals want to steal them. Their demand is driven by the fact that they sell for $10 to $50 each - in comparison to stolen credit card numbers which bring from 25 cents to $1.
The recently released Ponemon report shows that the costs associated with a data breach continue to rise. Across all industries such as retail, hospitality, healthcare, etc. the average cost per record for a data breach in the U.S. was $242. In the healthcare sector, however, the cost is much higher. In the healthcare sector, the 2019 cost is $429. Smaller organizations with less than 500 employees have an even higher average cost.
The FBI issued a warning to healthcare organizations that stated: The greatest vulnerability (to the security of patient data) is the perception of healthcare IT professionals' beliefs that their current permitted defenses and compliance strategies were working when clearly the data states otherwise.
Intersect's HIPAA compliance services provide an "under the skin" diagnosis. When a patient comes to your facility for a physical and tells the physician that they are feeling fine, the doctor is still going to require tests and other proceedures because the doctor wants data. They don't want guess at anything. They don't want to miss some condition that you are unable to feel, but that could kill you. Intersect's tool-driven process is thorough. It is also designed to be repeatable.
English 
Español
Français
Deutsch