Security Risk Assessment
The SRA tool is available free from https://www.healthit.gov/topic/privacy-security-and-hipaa/security-risk-assessment-tool WIN recommends that Healthcare Customers spend time answering the questions in this tool to:
- Determine the current risks to the organization and the patient’s sensitive health information.
- Identify stakeholders and assign responsibility/accountability with individuals in the organization who with the authority address risks.
- Establish schedule for ongoing periodic review of Dashboard/reports etc.
ConnectWise Automate
This software automates the delivery of software patches for Windows and other applications. It also provides a dashboard and can provide alerts to HIPAA security compliance
- Monitors Risks and provides real-time dashboard of current status of patch management etc.
- Automates and logs the steps taken to remediate risks. (i.e. “installed windows or 3rd party software patch”, “removed blacklisted software”, “disabled vulnerable services”, etc.)
- Provides Dashboard/Reports on Key Performance Indicators that can be periodically reviewed.
Trend Micro
Trend micro is the managed antivirus software that you are already using. But did you know that your subscription also includes features to manage your endpoints and protect against HIPAA risks such as
- Manage BitLocker keys (whole disk encryption is required for laptops containing HIPAA sensitive data)
- Data Loss Prevention (DLP) this records each time a HIPAA sensitive document is downloaded or uploaded to or from an endpoint. Current settings provide DLP reports that can be periodically reviewed.
- Provides protection against malware including known threats and unknown threats that behave like malware.