$3.5 million fine levied against Triple-S Management Corporation for HIPAA violations

It’s happened again. On Dec 1, 2015, a $3.5 million fine was levied against Triple-S Management Corporation, formerly known as American Health Medicare Inc., for HIPAA violations. OCR’s investigations indicated widespread non-compliance throughout the various subsidiaries of Triple-S, including: Failure to implement appropriate administrative, physical, and technical safeguards to protect the privacy of its beneficiaries’…

Offense is Sexy. Defense Wins the Game

What do all team champions have in common?  It doesn’t matter if we’re talking about football, baseball, basketball, hockey, soccer, cricket or just about any other team sport.  With few exceptions, the champion is extraordinarily competent at both offense and defense. Think about healthcare.  Offense is a given.  There are frequent C-Suite discussions about new…

An Authoritative Compliance Security for an Unwavering Presence

As per the 2011 Data Breach Investigations Report (DBIR) released by Verizon there has been a considerable drop in the number of compromised records- from 361 million in 2008 to 144 million in 2009 and less than 4 million in 2010. Security breach incidents have reduced to 1% in the healthcare sector while the hospitality…

Drawing-Out A Strikingly Compliant Role

While Cignet is recovering from the shock of $4.3 million fine slapped on it for HIPAA violation, barely two days later, the General Hospital Corporation and Massachusetts General Physicians Organization Inc. or better known as the Mass General gets hit with a  fine of  $1 million penalty for blatant exposure of patients’ records in a…

Safe and Secure Compliance Practices For Small Business

It is a strangely paradoxical situation that despite revised and stricter compliance regulations the number of security breaches seems to rise. The HIPAA mandate was enforced to tone down risks threatening patients’ personal records. But there has hardly been any positive report of effective progress towards a threat free environment. As per a recent study…

Top Tips to be GRC-Ready in 2011

According to industry experts, 2011 is the year when IT firms will realize that expensive risk management and compliance solutions may not provide the desired levels of security. Integration and alignment of disparate compliance initiatives for enhanced security controls will therefore assume immense importance. Chris Mclean, Forrester research analyst, in his report Governance, Risk and…

Federal Health Care Reform- What they Mean to Public CIOs

The technological implications of the Federal Health Care Reform are now becoming obvious, and states are beginning to confront the burden of implementing these changes. While extending health insurance to an additional 32 million Americans presents great opportunities for the state government, it also brings with it, big risks. And these risks are mainly associated…

Vulnerability Management: Secured IT, Assured Success

According to GartnerG2 (now Gartner Industry Advisory Services) a research unit of Gartner, 90% of cyber attacks leverage known security flaws and vulnerabilities, for which patches are already available. Gartner analysts also believe that several security attacks could have been avoided if organizations had focused more on vulnerability management efforts. Effective vulnerability management is therefore…