PCI Compliance

September 12, 2013

HEALTHCARE

6 of 9 HIPAA Network Considerations

2 min read

The HIPAA Omnibus Final Rule, released January 2013, goes into effect this month – Sept 23, 2013. Over the last several weeks, I’ve been posting a blog series around nine HIPAA network considerations. HIPAA Audits will continue The HIPAA Audit Protocol and NIST 800-66 are your best preparation Knowledge is a powerful weapon―know where your […]

August 8, 2013

HEALTHCARE

5 of 9 HIPAA Network Considerations

1 min read

Over the last several weeks, I’ve been posting a blog series around nine HIPAA network considerations. HIPAA Audits will continue The HIPAA Audit Protocol and NIST 800-66 are your best preparation Knowledge is a powerful weapon―know where your PHI is Ignorance is not bliss Risk Assessment drives your baseline Risk Management is continuous Security best […]

August 7, 2013

SECURITY

Attend the 2013 PCI Community Meeting for the Latest Core PCI Standards

1 min read

The focus of this post is on the upcoming PCI SSC North American Community Meeting which is being held September 24–26, 2013, at the Mandalay Bay Convention Center in Las Vegas, Nevada. The meeting spans two full days of knowledge sharing, networking, and learning, which includes Keynote presentations from industry experts, PCI case studies, and Technical sessions.

August 1, 2013

HEALTHCARE

4 of 9 HIPAA Network Considerations

2 min read

The fourth consideration in this 9 HIPAA Network Considerations blog series, we look at whether ‘not knowing’ is a valid defense post-breach. Is Ignorance Bliss, or will that get you into trouble? Remember, the HIPAA Omnibus Rule was released January 23, 2013, became effective March 26, 2013 with compliance to the updates se for September […]

July 26, 2013

HEALTHCARE

3 of 9 HIPAA Network Considerations

2 min read

Next in this 9 HIPAA Network Considerations blog series, I cover the third network consideration focusing on knowing where your PHI is.  Remember, the HIPAA Omnibus Rule was released January 23, 2013, became effective March 26, 2013 with compliance to the updates se for September 23, 2013.  Audits will also start up again for covered […]

July 9, 2013

SECURITY

TMA? Get Some Relief from Acronym Overload

10 min read

I see and hear a variety of acronyms being used on a daily basis. I recently heard one tossed around with good humor that makes a point: TMA or Too Many Acronyms. Every once in a while, when I think I’ve embedded the definition and use of an acronym into my long-term memory (anything beyond […]

July 1, 2013

HEALTHCARE

2 of 9 HIPAA Network Considerations

2 min read

Continuing the thread from the last blog where I discussed the first HIPAA network consideration, ‘HIPAA Audits will continue’, in this blog I’ll discuss the second network consideration on the list below.  Remember, The HIPAA Omnibus Final Rule, released January 2013, introduced some significant changes and updates.  The 2012 HIPAA audits concluded with some initial […]

June 24, 2013

HEALTHCARE

1 of 9 HIPAA Network Considerations

2 min read

The HIPAA Omnibus Final Rule, released January 2013, introduced some significant changes and updates.  The 2012 HIPAA audits, performed by KPMG, concluded with some initial findings released by the Department of Health and Human Services (HHS) Office of Civil Rights, OCR.  These two events may impact how you govern your internal organization and network for […]

Question: Are you PCI Compliant? Are you Secure? Part 2 of 2

2 min read

Last week, we sat down with Bart McGlothin and Christian Janoff from Cisco’s security team to discuss PCI Security for Retail to better understand “What is PCI Compliance?” and “How does that affect Retailers?” As a quick re-cap: PCI Compliance is a 12-step process to secure credit cards. Any retailer that accepts credit card payments […]