With regulatory requirements abound, few industries are as familiar with information security as the healthcare sector. But, as more providers lean on the flexibility of cloud computing and digital information systems, safeguarding sensitive data has never been more complicated. Indeed, data protection isn’t what it used to be. Long gone are the days when an…
In today’s ever-changing cybersecurity landscape, healthcare organizations are especially under pressure to keep protected health information (PHI) safe from cybercriminal activity. This challenge has grown more complicated over the past decade as more healthcare services are delivered using cloud computing and other information technologies. As the industry continues to evolve, providers are increasingly procuring…
Cybercrime is evolving at an accelerated pace. Not only are cyberattacks growing more prevalent and sophisticated, but they’re also becoming far more expensive. In fact, the average cost of a data breach reached an all-time high in 2021. According to IBM, just a single attack could cost an organization upwards of $4 million. It’s…
It’s no secret that organizations of all sizes have taken to the cloud at breakneck speed. Eager to capitalize on the many efficiencies that cloud computing has to offer, healthcare businesses are among those leading the pack. At the same time, HIPAA-covered entities must also determine whether or not they’re prepared to reap the benefits…
Since the first release of the HITRUST CSF in 2009, thousands of Covered Entities and Business Associates have relied on HITRUST to help them comply with the Healthcare Insurance Portability and Accountability Act (HIPAA). Today, the HITRUST Approach is used by more than 80% of US hospitals, 85% of US health insurers, and many other…
Businesses that handle personal health information need to pay attention to HIPAA and HITECH requirements. Being HIPAA-compliant is a slippery goal, though. The only definitive determination of compliance comes from a court or administrative judgment after the fact. The Security Rule doesn’t provide specific technical guidance on an acceptable level of security. With data breaches…
An authorization or certification from a security compliance standard, verifies that an organization has met the specific industry standard for data privacy and security. Critical infrastructure companies such as, government, healthcare, finance and nuclear are required to follow various cloud information technology (IT) compliance guidelines, due to the sensitive data managed in these industries. Software…
To our Federal and commercial customers: Project Hosts does not use Solarwinds. None of the services or servers we provide to customers of our ISO, HITRUST, FedRAMP, or DOD clouds have any exposure to the Solarwinds compromise identified in CISA Emergency Directive 21-01. -Scott Chapman, CEO at Project Hosts
Healthcare continues to be a popular target for cyber criminals. Recently, a major hospital system was hit with, what is potentially the largest cyber-attack in US history. The hospital was forced to resort to manually filing patients using pen and paper due to the “IT security issue”. While it has not yet been confirmed by…
The future of information technology is the cloud. Amazon and Microsoft are two companies that provide cloud services. A cloud service provider (CSP) is a company that offers cloud managed services to businesses and/or individuals. While Azure is eight years behind Amazon Web Services (AWS), it is of Microsoft – “arguably the most mature technology…
