Help Me With Hipaa

Description A Breach Response plan is a required element of your compliance program since HITECH became effective. Everyone must have a written plan and know what needs to be done. Glossary NIST National Institute of Standards and Technology Links NIST SP 800-61 Revision 2 - Computer Security Incident Handling Guide APDerm Resolution Agreement See item 2(2) FindHealthcareIT HIPAAforMSPS.com Kardon Compliance Notes Establishing an incident response capability should include the following actions: Creating an incident response policy and plan Written required - already had an OCR resolution that mentioned not having one (APDerm - $150,000) Developing procedures for performing incident handling and reporting Who is your "go to" team for forensics Setting guidelines for communicating with outside parties regarding incidents PR will be critical for reputation managment Selecting a team structure and staffing model Someone has to be in charge of the whole thing and then others in charge of the parts. E