Confidentiality, Privacy, and Security in HIPAA and HITECH ACTs
The increasing rate of greatly publicized security breaches has sparked changes in the attitudes of consumers and business owners. Business leaders can no more neglect the dramatic consequences that security breaches have on company reputation. In the meantime, consumers now demand more remedies and communication from business after a security breach incident. Therefore, this subject remains one of the greatest priorities confronting businesses in all sectors, including healthcare.
The two cases present two principal security threats: Mobile Devices (BYOD) and Medical Records Theft. Data theft is greatly vulnerable in cases where employees use mobile gadgets, particularly personal devices, to access company information, share data or ignore to change mobile passwords. According to a recent survey, mobile security breaches have affected over 70% of international firms in the last 12 months only (Gupta et al. 2012). In fact, as more companies adopt BYOD, they confront the threat of exposure from those gadgets on the corporate network, including through the VPN. This could occur given that an app installs malware which could access the device's network connection.
Healthcare security is currently a global concern. In fact, in 2015, medical records of over 40 million Americans were breached (Gupta et al. 2012). Almost half of these were a result of cyber attacks. A single attack exposed over five million patient records. Following the increasing value...
A recent survey by the Ponemon Institute highlights that the rise in medical identity theft has triggered an increase in unbudgeted costs to healthcare sector thus compounding further budgetary pressures. Estimates indicate that roughly 70% of the victims pay insurers, health care providers, lawyers and identity services with their personal cash, with the average costs adding up to $14,000 to handle these cases (Dawson & Omar, 2015).
Indeed, organizations need IT engineers and specialists with sophisticated skills to defend and prevent against sophisticated cyber attacks. However, nowadays, it is hard to find tech talents with these skills. Precisely, this problem is complicated by few factors:
Stiff competition. In the business world, competition for top security experts is fierce. As companies and hospitals adopt electronic records, they require more security to safeguard their sensitive customer data.
Budget issues. Following the rising need for talent and the declining supply of professionals, compensation for security engineers has hit the skies. Thus many organizations are unable to afford.
Outdated technology. Companies in all industries are highly prone to these attacks because they take long to adopt new technologies and software
Part II
While fixing the two security breach issues, companies can…
