Advertisement

© 2014

Healthcare Information Privacy and Security

Regulatory Compliance and Data Security in the Age of Electronic Health Records

  • Authors
  • The purpose of this book is to guide technical and administrative staff working in healthcare through the process of building secure, regulatory-compliant systems and processes that will assure patient confidentiality while avoiding costly penalties.

Book

Table of contents

  1. Front Matter
    Pages i-xxxiv
  2. Bernard Peter Robichau
    Pages 1-6
  3. The Evolution of a Monster

    1. Front Matter
      Pages 7-7
    2. Bernard Peter Robichau
      Pages 9-20
    3. Bernard Peter Robichau
      Pages 21-29
  4. Divide and Conquer: Defining Ownership to Develop Solutions

    1. Front Matter
      Pages 31-31
    2. Bernard Peter Robichau
      Pages 33-41
    3. Bernard Peter Robichau
      Pages 43-62
    4. Bernard Peter Robichau
      Pages 63-66
  5. Sustainable Solutions

    1. Front Matter
      Pages 67-67
    2. Bernard Peter Robichau
      Pages 69-80
    3. Bernard Peter Robichau
      Pages 81-98
    4. Bernard Peter Robichau
      Pages 99-107
    5. Bernard Peter Robichau
      Pages 109-115
    6. Bernard Peter Robichau
      Pages 117-121
    7. Bernard Peter Robichau
      Pages 123-129
  6. From Project to Program: Transitioning to a Sustainable Support Model

    1. Front Matter
      Pages 131-131
    2. Bernard Peter Robichau
      Pages 133-136
    3. Bernard Peter Robichau
      Pages 137-142
    4. Bernard Peter Robichau
      Pages 143-150

About this book

Introduction

Healthcare IT is the growth industry right now, and the need for guidance in regard to privacy and security is huge. Why? With new federal incentives and penalties tied to the HITECH Act, HIPAA, and the implementation of Electronic Health Record (EHR) systems, medical practices and healthcare systems are implementing new software at breakneck speed. Yet privacy and security considerations are often an afterthought, putting healthcare organizations at risk of fines and damage to their reputations.  

Healthcare Information Privacy and Security: Regulatory Compliance and Data Security in the Age of Electronic Health Records outlines the new regulatory regime, and it also provides IT professionals with the processes and protocols, standards, and governance tools they need to maintain a secure and legal environment for data and records. It’s a concrete resource that will help you understand the issues affecting the law and regulatory compliance, privacy, and security in the enterprise.  

As healthcare IT security expert Bernard Peter Robichau II shows, the success of a privacy and security initiative lies not just in proper planning but also in identifying who will own the implementation and maintain technologies and processes. From executive sponsors to system analysts and administrators, a properly designed security program requires that that the right people are assigned to the right tasks and have the tools they need. Robichau explains how to design and implement that program with an eye toward long-term success. Putting processes and systems in place is, of course, only the start. Robichau also shows how to manage your security program and maintain operational support including ongoing maintenance and policy updates. (Because regulations never sleep!) 

This book will help you devise solutions that include:

  • Identity and access management systems
  • Proper application design
  • Physical and environmental safeguards
  • Systemwide and client-based security configurations
  • Safeguards for patient data
  • Training and auditing procedures
  • Governance and policy administration 
Healthcare Information Privacy and Security is the definitive guide to help you through the process of maintaining privacy and security in the healthcare industry. It will help you keep health information safe, and it will help keep your organization—whether local clinic or major hospital system—on the right side of the law.

About the authors

Bernard Peter Robichau is the owner and chief security consultant at Category 3 Partners, LLC, on contract with a large academic medical system in the mid-Atlantic. He is a Certified Professional in Health Information Management Systems, an Epic Certified Security Coordinator, and a Project Management Professional credential holder. He has nearly two decades of experience in the IT field with an emphasis on information security. Robichau has served as a security officer in the public sector and as a member on various information security advisory committees. He has presented on the topic of information security in public forums. For information related to this book, see its dedicated site at robichau.com.

Bibliographic information

  • Book Title Healthcare Information Privacy and Security
  • Book Subtitle Regulatory Compliance and Data Security in the Age of Electronic Health Records
  • Authors Bernard Peter Robichau
  • DOI https://doi.org/10.1007/978-1-4302-6677-8
  • Copyright Information Apress 2014
  • Publisher Name Apress, Berkeley, CA
  • eBook Packages Professional and Applied Computing Professional and Applied Computing (R0)
  • Softcover ISBN 978-1-4302-6676-1
  • eBook ISBN 978-1-4302-6677-8
  • Edition Number 1
  • Number of Pages XI, 194
  • Number of Illustrations 25 b/w illustrations, 0 illustrations in colour
  • Topics Security
    Cryptology
  • Buy this book on publisher's site
Industry Sectors
Pharma
IT & Software
Telecommunications
Aerospace
Engineering
Finance, Business & Banking
Electronics