Why a HIPAA Security Analysis Is Not Enough
CISO David Loewy Offers Tips for Conducting Comprehensive Security Self-Assessments
January 12, 2017
Audio is streamed directly from the publisher (ismg-cdn.nyc3.cdn.digitaloceanspaces.com) as published in their RSS feed. Play Podcasts does not host this file. Rights-holders can request removal through the copyright & takedown page.
About this episode
Although HIPAA requires healthcare organizations to conduct a periodic security risk analysis focused on systems containing PHI, larger entities should also perform more comprehensive security self-assessments, advises CISO David Loewy of SUNY Downstate Medical Center, who explains his approach.