HIPAA

HIPAA

What is HIPAA?

The Health Insurance Portability and Accountability Act (HIPAA), which went into effect in 1996, demands that all healthcare institutions in the U.S. keep electronic patient files and records strictly confidential.  Another objective of HIPAA is to help workers and their families maintain health insurance coverage when they change or lose their jobs.  In 2007, the U.S. Department of Health and Human Services began taking measures to enforce HIPAA.

Who is Affected by HIPAA?

Physicians and staff at most hospitals and clinics share terminals and access points, making it difficult to protect sensitive patient information as required by HIPAA. Also, systems used for patient care are connected to the network but are not protected by security technologies. To comply with HIPAA regulations, healthcare institutions need to monitor and control network access and what users can transmit or download.

HIPAA affects organizations besides health care providers and insurance companies. In fact, the legislation requires that any company that handles patient information must comply with the HIPAA privacy rule.

How Can McAfee HIPAA Security Solutions Help?

McAfee helps organizations comply with HIPAA security requirements and regulations by effectively and efficiently safeguarding servers, desktops, remote devices, networks, and applications against data breaches and intrusions that could disrupt operations and put patients and their confidential information at risk.

McAfee's Vulnerability Management solutions assist with finding, evaluating, and fixing HIPAA-related IT vulnerabilities and policy violations. In addition, McAfee's Risk and Compliance solutions provide a single, comprehensive view of your network to help you quickly identify HIPAA security risks, and saves time and money by automating time-consuming manual HIPAA auditing processes.

HIPAA Security Solutions Offered by McAfee:

• Vulnerability Management Solutions - Find, evaluate, and fix the most severe IT threats and critical vulnerabilities to HIPAA compliance that could endanger your business.
  • McAfee Foundstone Enterprise
    Identify HIPAA risk exposures. Prioritize resources. Reduce risk.
  • McAfee Foundstone On-Demand Service
    Simple, convenient, and cost-effective hosted HIPAA vulnerability management.
  • McAfee Policy Auditor
    Demonstrate compliance with HIPAA security policy.
  • McAfee Remediation Manager
    Enforce HIPAA compliance with automated remediation of noncompliant or vulnerable systems.
• Risk and Compliance Solutions – Consolidate vulnerability, configuration and threat data from multi-vendor tools, prioritize risks and automate HIPAA compliance reporting.
  • McAfee Foundstone Enterprise
    Identify HIPAA risk exposures. Prioritize resources. Reduce risk.
  • McAfee Preventsys® Compliance Auditor
    Automate McAfee Foundstone Enterprise HIPAA compliance reporting.
  • McAfee Foundstone On-Demand Service
    Simple, convenient, and cost-effective hosted HIPAA vulnerability management.
  • McAfee Preventsys Risk Analyzer
    Automate compliance reporting against HIPAA standards and policies, and remediate the most critical risks first.
  • McAfee Policy Auditor
    Demonstrate compliance with HIPAA security policy.
  • McAfee Remediation Manager
    Enforce HIPAA compliance with automated remediation of noncompliant or vulnerable systems.

Other Resources

• Case Study: HealthSouth Corporation
• Case Study: Liberty Behavioral Management Corporation
• Foundstone Educational Course: Risk Assessment Principles and Practice
• Foundstone Regulatory & Compliance Health Check
• Foundstone Application Security Health Check
• Foundstone Risk Assessment

Security Information Library

• Adware
• Antivirus
• Data Loss or Leakage
• Email Filtering
• Firewall
• Identity Theft
• Information Security
• Macintosh Antivirus
• Network Intrusion
• Online Security
• Phishing
• Spam
• Spyware