Part 3 of 7
Big Data and Healthcare Information Exchange (HIE): Despite a patient’s symptoms seeming simple, patients may still be referred to a specialist to pinpoint the cause. This specialist is part of an HIE consortium where information is being communicated and shared for the purpose of providing a quicker diagnosis with a more accurate outcome in a more affordable manner, which ultimately leads to better care for the patient. Through the HIE, the specialist can use Big Data Analytics to analyze, track, and diagnose difficult symptoms and diseases. For the patient, this means the specialist can rely on information from similar cases to help determine his needs and define an effective treatment plan. Increasing federal regulations mandate the sharing of information between healthcare organizations, which means that healthcare organizations must have added security controls in place – like Unique User Identification – to ensure the privacy, security, and protection of ePHI and PII.
YOUR GOAL IS BREACH PREVENTION
No organization wants to find itself in the position of having to defend a breach. Preventing a breach is ideal and being proactive is necessary. Take these ideas under serious consideration:
• Hire a Managed Service Partner to monitor and manage your IT environment.
• Have regular consultations with a HIPAA knowledgeable attorney.
• Hire a HIPAA Consultant.
• Pay a professional to conduct a Comprehensive Risk Assessment.
• Mitigate the results of a Security Vulnerability Assessment.
• Implement and enforce HIPAA Security Policies/Procedures.
• Get Cyber Insurance and implement a full HIPAA Compliance Program.
• Invest in industry-standard encryption solutions.
• Have an Organizational Policy for addressing and monitoring mobile devices.
• Use Active Directory and Group Policies to enforce User Rights and Security Controls.
• Ensure that medical devices have up-to-date security patches and are malware-free.
• Implement and maintain strong firewalls with subscription services and an Intrusion Detection System (IDS).
• Cultivate a strong, ongoing Security and HIPAA Awareness Program.