Sponsored by NetIQ
  Minimize

Ask Rebecca Herold your IT compliance questions!
 Contact Rebecca Herold
 through email, the
 discussion board, or IM.
  Learn more...

     

Presented by Realtimepublishers
Register now to participate! Minimize
While you're welcome to browse the conversation, you'll need to log in or register to really Join the Conversation. Registration is free and takes only a few minutes, so why not sign up? Just click the "Get a Free Account" link near the top of the page. We look forward to meeting you!
     

The Conversation Minimize
Subject: Verifying the security of the PHI that BAs handle
You are not authorized to post a reply.
Author
  Messages
RebeccaHerold
Posts:27

02/08/2006 10:45 AM Alert 
HIPAA requires covered entities (CEs) to take actions to ensure their business associates (BAs) are applying appropriate safeguards.  If you are a CE, what actions have you taken to address this requirement?  Have you simply used a questionnaire the vendor completed, or have you gone onsite to perform a full vulnerability assessment?  What methodologies are you using for the safeguard reviews and verification?  What has worked well, and what hasn't?  If you are a BA, approximately what percentage of your CE clients have performed these safeguard reviews with your organization?  What methods are they using?
You are not authorized to post a reply.
Forums > Specific Compliance Discussion > HIPAA Happenings > Verifying the security of the PHI that BAs handle



ActiveForums 3.5