Continuing the thread from the last blog where I discussed the first HIPAA network consideration, ‘HIPAA Audits will continue’, in this blog I’ll discuss the second network consideration on the list below. Remember, The HIPAA Omnibus Final Rule, released January 2013, introduced some significant changes and updates. The 2012 HIPAA audits concluded with some initial findings released from The Department of Health and Human Services (HHS) Office of Civil Rights (OCR). These two events may impact how you govern your internal organization and network for patient privacy and protection of PHI. The deadline for compliance with the updates to the HIPAA Omnibus Final Rule is September 23, 2013.
Most of us are familiar with the famous lines novice farmer Ray Kinsella heard whispered in his cornfield: “If you build it, he will come.” Not unlike the baseball diamond that appeared in the middle of Dyersville, Iowa, in the film Field of Dreams is the state-of-the-art children’s hospital in Madera County, California.
Children’s Hospital Central California (CHCC) began as the vision of five civic-minded women who saw the need for a dedicated pediatric hospital in Central California. Nearly 60 years later, CHCC has grown to a 348-bed, nationally respected regional pediatric medical center on a 50-acre campus with a medical staff of more than 525 physicians. Built on land donated by a farmer, CHCC is humbly referred to as the “Field of Dreams” by the Cisco account team. Read More »
It was 1918 – World War I had just ended and the Spanish Flu epidemic was raging across Central Florida. In Orlando, a dedicated group of doctors and community members joined together to raise a 50-bed, non-air-conditioned hospital to care for the sick. Orange General Hospital opened with the mission of providing top-level care for all community members, and has done just that for the past 95 years.
While the mission for the organization hasn’t changed, Orange General Hospital has grown to become Orlando Health – one of Central Florida’s most comprehensive, not-for-profit hospital systems composed of six wholly-owned hospitals and two partnership hospitals. The 2,000-plus bed system serves nearly 2 million residents and includes Orlando Regional Medical Center, MD Anderson Cancer Center Orlando, and the Arnold Palmer Medical Center, which consists of Arnold Palmer Hospital for Children and Winnie Palmer Hospital for Woman & Babies. As a not-for-profit organization, Orlando Health’s top priority is the welfare of the community, and all excess revenues are used to benefit the community.
While at Cisco Live! in Orlando, Fla., I had the pleasure of leading a tour of the future Veterans Administration (VA) Medical Center at Lake Nona, along with Dr. Kenneth Goldberg, the center’s new chief of staff.
This amazing facility will be the first new VA hospital to be built in the U.S. in nearly 20 years. When complete, it will be a state-of-the-art medical center that will care for many of the approximately 400,000 veterans and their families living in Central Florida (1.8 million veterans call Florida home).
The 1.2 million square-foot facility in Orange County will be one of the largest hospitals in the VA system. It will have a large multispecialty outpatient clinic, a 134-bed inpatient diagnostic and treatment hospital, a 118-bed nursing home, a 60-bed domiciliary, and a veterans benefit mini service center. Its campus will also include the Simulation Learning Education and Research Network, which is a high-technology, immersive environment that uses simulation to train VA medical personnel. Read More »
The HIPAA Omnibus Final Rule, released January 2013, introduced some significant changes and updates. The 2012 HIPAA audits, performed by KPMG, concluded with some initial findings released by the Department of Health and Human Services (HHS) Office of Civil Rights, OCR. These two events may impact how you govern your internal organization and network for patient privacy and protection of PHI.
Here are nine network considerations to address in the new HIPAA landscape. I will discuss the first consideration in this blog.
- HIPAA Audits will continue
- The HIPAA Audit Protocol and NIST 800-66 are your best preparation
- Knowledge is a powerful weapon―know where your PHI is
- Ignorance is not bliss
- Risk Assessment drives your baseline
- Risk Management is continuous
- Security best practices are essential
- Breach discovery times: know your discovery tolerance
- Your business associate(s)must be tracked