Business Security
The HIPAA (Health Insurance Portability and Accountability Act of 1996) proposes a set of standards to regulate the electronic exchange of health information and to protect the confidentiality of this information.
Although a great deal of press is received by stories concerning HIPAA and HIPAA compliance, the fact is that HIPAA only presents general guidelines for protecting information security. It does not recommend particular vendors or technologies, but it is based upon a normal and prudent business security solution. The solution must be:
 | Scalable to all sizes of business |
| Comprehensive in scope to protect from both internal and external threats. The solution pieces must act as a security system |
| Neutral as to technology |
To learn more about business information security.....
To send a help request to DVITS....
DVITS routinely assists medical practices as well as insurance-related organizations in implementing or improving their information networks. Our projects include assistance in meeting essential HIPAA patient privacy and information security requirements, to include:
| Encrypted connections to insurance, health services, and research portals |
| Encrypted Wide Area Network (WAN) connections to associated facilities |
| Establishing digitally signed/encrypted e-mail services |
| Tape and off-site backup systems to ensure that patient information is recoverable |
| Automated back-ups of workstations |
| Virus scanning, centralized reporting |
| Disaster recovery procedures to accelerate recovery from loss of hard drive/server or on-site emergency |
| Establishment of SSL and TLS encrypted web services |
| Remote network monitoring of all essential network devices and services with rapid (< 2 minutes) alerting of critical admin personnel |
| Establishment of centralized deployment of operating systems updates and patches (Software Update Services) |
| Design and implementation of encrypted Sharepoint Services |