Tag: HIPAA Compliance


Jan 2019

What You Need to Know About HIPAA Risk Assessments

The Health Insurance Portability and Accountability Act (HIPAA) describes how organizations that store, process, maintain, or transmit Personal Health Information (PHI) must handle this sensitive information. HIPAA is comprised of the Privacy Rule, the Security Rule, and the Breach Notification Rule which collectively mandate how patient privacy should be ensured and how the sensitive health data should be protected. One component of HIPAA is the...

Read More


Dec 2018

Sword & Shield Announces HIPAA Compliance Case Study

Award winning national information security and compliance firm helps company gain confidence in bidding for new contracts KNOXVILLE, Tenn. December 17, 2018 – Sword & Shield Enterprise Security, a leading national cybersecurity and compliance firm headquartered in Knoxville, Tennessee, announced today the release of a new HIPAA compliance case study. The case study documents how CTS Software, the developer of TripMaster, enlisted Sword & Shield’s...

Read More


Oct 2018

Does HIPAA Apply to Me?

Over the course of Sword & Shield’s years of HIPAA compliance consulting, we have been asked many times, “Does HIPAA apply to me?” In this post, we describe how your organization can determine whether or not you are required to be compliant with the HIPAA regulations for privacy and security of protected health information (PHI). Introduction to HIPAA The Health Insurance Portability and Accountability Act (HIPAA)...

Read More


Jul 2018

Lessons Learned from the MD Anderson Breaches

The MD Anderson Cancer Center at the University of Texas was recently fined $4.3 million by the US Department of Health and Human Services (HHS) Office for Civil Rights (OCR) concerning data breaches that resulted in the loss of the health information of 33,500 patients. In this article, we called on one of our healthcare experts, Security Consultant Jeremy Bess, to explain what lessons can...

Read More


May 2018

Complying with HIPAA encryption standards; what you need to know

By Jeremy Watson Have you encrypted your electronic protected health information (ePHI) data at rest (being stored in persistent storage) and in transit (flowing from one point to another, whether it be the over the internet or a private network)? If so, you’re compliant with the HIPAA encryption standard and, therefore, covered by the Safe Harbor Rule in case of a breach. This means you’re...

Read More


Apr 2018

Understanding HIPAA Today

Look back into the Healthcare Privacy and Security Standard’s growth to understand where we are today. By Chris Lyons When the Health Insurance Portability and Accountability Act (HIPAA) was signed into law in August of 1996, the intent was to provide an improved method of allowing employees to ensure they were able to retain healthcare coverage between jobs, combat waste and fraud in healthcare, and...

Read More


Sep 2017

First HIPAA Risk Assessment? Here’s what you should know.

By Chris Lyons HIPAA compliance can be a daunting endeavor, especially if your organization has never faced this challenge. A HIPAA risk assessment can help you achieve compliance. If you are considering your first HIPAA risk assessment, there are a few things you should know. Here are four points to get you on your way: Understand your security environment Prepare for the assessor’s visit by gathering...

Read More


Sep 2016

Need Help with HIPAA? Call an MSSP.

Because healthcare data contains so much personal – and lucrative – information, breaches into medical organizations’ networks are now the most common cyber-attack IT security professionals see. Healthcare organizations need to diligently monitor the security of their networks from both a regulatory perspective and from the perspective of what is considered best security practices. When government incentives first led healthcare organizations to adopt electronic healthcare...

Read More