ShareThis

  • Ways to share

Disclaimers

  • Interpretation & Action
    The words are mine; the way you interpret them and the actions you take as a result are yours. Believe and act at your own risk.
  • The postings on my blogs are my own and don't necessarily represent my employers' or clients' positions, strategies or opinions.
Blog powered by Typepad
Member since 11/2005

« QUICKIE: Hospital Charity Care Is Probed - washingtonpost.com | Main | links for 2006-09-14 »

September 13, 2006

Comments

Mike

I think enforcement is a must for HIPAA regulation and needs to be taken seriously by covered entities and business associates. I recently came across a regulation poster from Symantec which is a very useful tool. This poster is crosswalk between: HIPAA, ISO 17799, COBIT 4.0, Sarbanes Oxley, Payment Card Industry (PCI), GLBA, NERC standards CIP and PIPEDA (Canada) http://www.compliancehome.com/symantec/. With the help of this tool organization can comply not only with HIPAA but will be able to comply with many other different regulatory authorities at the same time itself which are listed above.

compliance advisor

Enforcement of compliance regulation is must for many organizations but implementing, establishing and maintaining of same is a tough task due to complexity and cost. www.Training-hipaa.net website provides a wonderful and valuable template suite which any organization, small or big, can use to meet their compliance requirements for HIPAA, Sarbanes Oxley (SOX), FISMA, ISO 17799 or any other regulation/standards requiring business impact analysis, risk assessment, disaster recovery planning (DRP), business continuity plan (BCP) and Testing & Revision of Plan.

http://www.training-hipaa.net/template_suite/enterprise_contingency_plan_template_suite.htm

The comments to this entry are closed.