HIN Offers New Report on HIPAA Security Auditing

November 30, 2004 (PLANSPONSOR.com) - With the April 2005 security compliance deadline hanging over health care entities' heads, these groups could take a look at a new report from the Healthcare Intelligence Network (HIN).

The report – “HIPAA Security Auditing: How To Create a Consistent, Repeatable and Documented Program” – is a resource for health care providers, health plans and health care clearinghouses who are looking to shore up their security programs mandated by the Health Insurance Portability and Accountability Act (HIPAA), according to a press release from HIN.

The report – a guide to developing, implementing and refining a HIPAA security auditing program, according to the

company – is based on an audio conference held in September with industry representatives. Chris Apgar (CISSP, Principal, Apgar & Associates) and Mikel Lynch (Director, Corporate Compliance for Missouri Health Care) are the two representatives whose recommendations are noted in the report.

The report covers 17 topics, including:

  • overcoming security compliance challenges
  • applying the 50% rule in auditing
  • positioning audits as a management tool
  • developing an 18-point checklist for implementing an audit program
  • auditing the audit program
  • looking at auditing and technical safeguards.

The report is targeted at CEOs, privacy officers, security officers, information technology executives, HIPAA team leaders, compliance officers, business development and strategic planning directors, according to HIN.

For more information and the table of contents, please visit http://www.hin.com/cgi-local/link/news/pl.cgi?hiptrrel .