Medical ITG offers many comprehensive security plans tailored to fit your company’s HIPAA-required needs
Packages include:
- Scheduled monthly maintenance
- Auto screen lockout maintenance
- Quarterly Security/Risk assessment
- Help Desk Portal, Email, & Phone
- Full Device Encryption
- Equipment Purchasing Assistance
- Project Planning
- Web Hosting & Services
- 3rd Party Vendor Management
- Online Ticket Support System
- Online Software License Management
- Desktop Optimization & Management
- 24×7 remote emergency support
- Software patch management
- VPN (Virtual Private Network) client management
- Anti-Virus & Anti –Spyware Management (Enterprise Anti-Virus requires the purchase of Trend Micro Software per computer)
- All Policies and Procedures
- Router and Firewall Security Management
- Assigned Engineer
- Assess Network Vulnerabilities
- Site-to-Site Management
- ISP Security Management
- Unlimited remote control
- Unlimited phone support
- 24x7x365 monitoring & reporting
- 1 Hour guaranteed support response time
- 2-factor authentication
- and more!
Required HIPAA policies and procedures include:
- Network access request form
- Approved software
- Approved Vendors
- Background check authorization form
- Change management tracking log
- Employee hire and termination form
- Sanctions policy
- Breach Assessment tool
- Security Incident Investigation report
- Security Incident report log
- Security Incident report excel
Quarterly Security Assessment will include:
- Find and Document all ePHI repositories
- Find and document potential threats and vulnerabilities to each repository
- Assess current security measures
- Determine the likeness of threat occurrence
- Determine the potential impact of threat occurrence
- Determine the level of risk
- Determine added security measures needed to lower of risk
- Document the findings of the risk assessment
Medical ITG specializes in HIPAA Compliance, Network & Systems Management, Security, 24/7 Technical Support, and more.
The Health Insurance Portability and Accountability Act (HIPAA) was set up to protect the privacy and security of confidential health information.
According to the U.S. Department of Health & Human Services, organizations handling protected health information (PHI) need to be sure to enforce these safeguards:
Administrative Safeguards: Covered organizations must examine and lower potential risks to electronic health records.
- Choosing an officer to develop and apply security policies and procedures.
- Permitting access to e-PHI only when it’s proper based on the user or recipient’s role.
- Training all staff members on security policies and procedures.
- Applying sanctions to workforce members who violate security policies and procedures.
- Covered organizations must perform regular audits of the effectiveness of their security policies and procedures.
Physical Safeguards:
- Limit facility access and make sure to allow authorized access. For example, your organization can use computerized door locks, then assign unique passcodes for each user.
- Employ policies and procedures involving proper use and access to workstations and electronic media.
- Apply policies and procedures relating to the transfer, removal, and reuse of electronic media.
Technical Safeguards:
- Execute policies and procedures allowing only authorized persons to access e-PHI. For example, Medical ITG can set up an automatic log-off policy on staff workstations.
- Carry out hardware, software, and/or procedures to record and examine activity in information systems using e-PHI.
- Implement policies and procedures ensuring e-PHI is not incorrectly modified or destroyed.
- Protect against unauthorized access to e-PHI sent over an electronic network. This includes the information sent by email, through the internet, or on a private cloud. For example, Medical ITG can set up email gateway-to-gateway encryption.
Email [email protected] to schedule your free consultation.
We can also help your organization search for such HIPAA compliance failures as:
- Not performing regular security audits and training
- Improper disposal of patient records
- Unprotected storage of private health information
- Not creating access controls levels for patient records
- Not updating data security policies and procedures
About Medical ITG IT HIPAA Compliance
Medical ITG is a fast-growing HIPAA IT Compliance company in your neighborhood. We will offer your medical organization exceptional customer service and a centralized source of expertise. We specialize in HIPAA Compliancy, Network & Systems Management, Security, 24/7 Technical Support, and more.