Search:    
PABRAI RESUME | PABRAI BIO
Clients | Testimonials | estore | ecfirst | HIPAA Academy | Events | Press | Home

 

Categories

Meta

 

Wireless Security Policy Tip


The HIPAA Security Rule requires healthcare organizations to develop a comprehensive library of information security policies and procedures. Wireless security should be one of the policies that your organization should consider developing. The wireless security policy sets the dial tone for use of wireless components in your network infrastructure.

 Your wireless security policy should address areas such as:

  • Types of authorized wireless devices and components
  • Scope and frequency of wireless security assessments
  • Requirements for access points deployed on the infrastructure
  • Encryption and authentication requirements for wireless devices and components
  • Management capabilities required to monitor the wireless network

From the perspective of the design of the wireless infrastructure, the policy document can establish requirements such as:

  • Configure a firewall between the wireless network and the wired infrastructure.
  • Ensure that 128-bit or higher encryption is used for all wireless communication.
  • Fully test and deploy software patches and updates on a regular basis.
  • Deploy Intrusion Detection Systems (IDS) on the wireless network to report suspected activities.

1-DAY ON-SITE WIRELESS VULNERABILITY ASSESSMENT

ecfirst, an Inc. 500 business with over 1400 clients, delivers a 3600 solution in the areas of compliance and information security. The ecfirst solution is focused on working collaboratively with your organization to conduct a 1-day rapid assessment of your wireless infrastructure. This provides the foundation to identify vulnerabilities and develop a recommended plan for remediation action.

The ecfirst team consists of credentialed professionals with years of experience designing and successfully implementing information security solutions that are customized to work in client environments.

To discuss your requirements or for a customized proposal, please contact Ms. Lorna Waggoner, Director of Business Development at 1.877.899.9974 x17 or at Lorna.Waggoner@ecfirst.com .

HIPAA Tip

MANAGED COMPLIANCE SERVICES PROGRAM (MCSP)

Legislation mandates require organizations to maintain compliance with reasonable and appropriate safeguards in several specific areas. Compliance requirements result in critical activities that must be conducted on a regular schedule, typically once a year. On a regular schedule, organizations must:

  • Assess compliance with the requirements  of confidentiality and privacy related regulations
  • Assign responsibility to the security officer who is responsible for coordinating compliance and security initiatives
  • Conduct a comprehensive and thorough risk analysis including vulnerability assessment (penetration testing)
  • Complete a Business Impact Analysis (BIA) for contingency planning and disaster recovery
  • Develop and update security policies and procedures
  • Train all members of the workforce
  • Audit and evaluate the information infrastructure

 The ecfirst Managed Compliance Services Program is tailored to meet your compliance requirements.Key features of the ecfirst Managed Compliance Services Program are:

  • Bundled outsourced solution for a fixed monthly fee
  • Periodic performance of vulnerability assessments, security risk analysis, BIA and contingency planning
  • Training, certification and periodic audit and evaluation to keep your organization fully compliant at all times
  • Keeping you compliant with the regulations, to help you focus on the business of delivering exceptional services and capabilities to your clients

 Benefits of outsourcing compliance and security include:

  • Minimizing productivity losses from unexpected downtime
  • Enabling staff to better focus on business-critical tasks and complying with key regulations
  • Depth in resource capabilities with trusted knowledge of client infrastructure
  • Smooth out volatility in resource demands and costs associated with managing information technology

Contact Lorna Waggoner, Director of Business Development, at 1.877.899.9974 x17 to learn more about how to manage compliance requirements cost effectively with minimal impact to your internal staff.



 

managed by ACU Web