Ltek Enterprises - Secured Networks
 

HIPPA Standards

HIPAA Standards for Security and Electronic Signatures

Administrative Procedures

REGULATION REQUIREMENT:

IMPLEMENTATION MEASURES:
   

Contingency plan

Applications and data criticality analysis
Data backup plan
Disaster recovery plan
Emergency mode operation plan
Testing and revision

Information access control

Access authorization
Access establishment
Access modification

Personnel security

Supervision of maintenance personnel by authorized, knowledgeable person
Maintain record of authorizations
Personnel have proper access authorization
Personnel clearance procedure
Personnel security policy/procedure
Users trained in security

Security configuration management

Documentation
Inventory
Security Testing
Virus checking

Security incident procedures

Report and response procedures

Security management process

Risk analysis
Risk management
Sanction policy
Written security policy

Termination

Combination locks changed
Remove from access lists
Remove user account(s) Turn in access items (keys, badge, etc.)

Training

Awareness training for all personnel Periodic security reminders
User education concerning virus protection
User education in password management

Physical Safeguards

REQUIREMENT:

IMPLEMENTATION:
 

Media controls (all required)

Access control
Accountability tracking
Data backup
Data storage
Disposal
   

Physical access controls (all required)

Clearance for visitors and escorting procedures Disaster recovery
Emergency mode operation
Equipment control
Facility security plan
Procedures for verifying access authorizations
Maintenance records
Need-to-know procedures for personnel access
Testing and revision

Technical Security Services

REQUIREMENT:

IMPLEMENTATION:

Access control

Optional: Encryption Required: Procedure for emergency access of: Context-based access

Authorization control (at least one)

Role-based access or User-based access

Entity authentication

Required: Automatic logoff Unique user identification

One of: Biometric device
Password
PIN
Token

Technical Security Mechanisms

REQUIREMENT:

IMPLEMENTATION:

Communications/network controls

Alarm
Audit trail
Entity authentication
Event reporting
Integrity controls
Message authentication

One of: Access controls
Encryption
 
 

Home
In The News

Partners
  Sonicwall
  Tripwire
  Microsoft

Small Business Software
Internet Security Test
Firewall Test
VPN Setup
Home Security

Hipaa
Hipaa Standards
Hipaa Security Regulations

FAQ
Contact Us
About Us
Sitemap












Ltek Enterprises - Secured Networks
Ltek Enterprises - Secured NetworksLtek Enterprises - Secured Networks