Compliance Standards Archives

What are the HITECH Safety Measures?

by RSI Security March 2, 2021March 4, 2021

The Health Insurance Portability and Accountability Act of 1996, more commonly known as HIPAA, has had immense impacts on the domestic and global healthcare industry. Over a decade later, the US Department of Health and Human Services (HHS) expanded HIPAA’s protections with the publication of the Health Information Technology for Economic and Clinical Health Act (HITECH). But what are the HITECH safety measures? In other words, what do you need to do to fully secure your company and its stakeholders? Keep reading to find out.

March 2, 2021March 4, 2021 0 comment

PCI DSS

What Data Falls Under PCI Compliance?

by RSI Security March 1, 2021March 4, 2021

written by RSI Security

The Security Standards Council (SSC) of the Payment Card Industry (PCI) has developed many frameworks to protect companies from cybercrime targeting consumers’ credit and debit cards. Among the most widespread of these frameworks is the PCI Data Security Standard, or PCI DSS, which protects nearly all consumer card data processed, stored, transmitted, or otherwise contacted by businesses. It brings us to the question: what data falls under PCI compliance, exactly, and which companies need to comply with PCI’s security standards?

March 1, 2021March 4, 2021 0 comment

HIPAA / Healthcare Industry

Top Data Security Challenges In Healthcare

by RSI Security February 26, 2021March 1, 2021

written by RSI Security

During the pandemic, our gratitude for healthcare workers is growing all the more. Yet, grateful as we are, cybersecurity is another burden added to the load healthcare workers already carry.

Members of the cybersecurity community recognize that there are security challenges in healthcare, and this article will explore them.

February 26, 2021March 1, 2021 0 comment

HITECH

Overview of the HITECH Security Standards Rule

by RSI Security February 26, 2021March 4, 2021

written by RSI Security

The US Department of Health and Human Services (HHS) drafted the original Health Insurance Portability and Accountability Act (HIPAA) in 1996. HIPAA designated patients’ medical data as “protected health information” (PHI) and developed security standards to safeguard it. Later, the Health Information Technology for Economic and Clinical Health Act (HITECH) added several HITECH security standards to broaden these increasingly digital landscape protections.

February 26, 2021March 4, 2021 0 comment

California Consumer Privacy Act (CCPA)

Basic Data Breach Response Planning Steps

by RSI Security February 25, 2021March 3, 2021

written by RSI Security

It is not often that you find yourselves amid a data crisis, but when you do, you’ll be thankful for all the prior effort you put into designing a response plan.

This article will examine the basic approach to data breach response planning and the steps involved.

February 25, 2021March 3, 2021 0 comment

HITECH

Major Components of the HITECH Act: What You Should Know

by RSI Security February 25, 2021March 4, 2021

written by RSI Security

Patients’ medical records are some of the most attractive targets for theft. The US Department of Health and Human Services (HHS) designated them as protected health information (PHI) in the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and laid out measures to ensure their safety. Later, the HITECH Act of 2009 updated these safeguards for the modern era. But what are the major components of the HITECH Act? Keep reading to learn more.

February 25, 2021March 4, 2021 0 comment

California Consumer Privacy Act (CCPA)

New CCPA Website Requirements and Your Business: Time for an Update?

by RSI Security February 24, 2021March 1, 2021

written by RSI Security

The regulatory landscape has shifted once again, and California regulators have pushed through new CCPA website requirements.

Following proposition 24, organizations will now have to address the changes to the CCPA.

Join us in this article to explore what these new changes mean, how they affect your business, and how you can become CCPA website compliant.

February 24, 2021March 1, 2021 0 comment

CMMC

Overview of NIST SP 800-171 Requirements

by RSI Security February 22, 2021February 28, 2021

written by RSI Security

In order to work with the US Department of Defense (DoD), companies need to strengthen their cyberdefenses to avoid compromising the security of our armed forces and, by extension, all Americans. Doing so requires complying with Special Publication 800-171, a publication of the National Institute of Standards and Technology (NIST). Following all NIST SP 800 171 requirements is just the first step toward DoD preferred contractor status.

February 22, 2021February 28, 2021 0 comment

CMMC

Are You Ready for CMMC Level 3 Certification?

by RSI Security February 18, 2021February 18, 2021

written by RSI Security

Working with the US government, particularly the Department of Defense (DoD), can be extremely lucrative. However, given how critical the DoD’s security is to the well-being of all Americans domestic and abroad, it also requires would-be contractors to take all available precautions in physical and digital security. Enter the Cybersecurity Maturity Model Certification (CMMC), published by the OUSD (A&S), or the Office of the Under Secretary of Defense for Acquisition and Sustainment. To that end, CMMC level 3 is a significant milestone on your way to DoD contacts.

February 18, 2021February 18, 2021 0 comment