HIPAA Tip: Cybersecurity Awareness

How can you stay Cybersecurity aware? There are many ways to keep your organization on top of best practices when it comes to cybersecurity without breaking the bank or making it complicated. Remember this is not rocket science or brain surgery!

Our world is increasingly digital and interconnected. In order to keep systems and organizations’ environments safe we need to educate ourselves and our teams.

Here are some tips to include:

• • Use strong passwords for all operating systems and applications containing electronic Protected Health Information (ePHI) and/or sensitive data. The longer the password, the better (10 or more characters); passphrases are more difficult to crack. Passwords should also have a lockout policy where the system blocks the user for a period of time after failed log-in attempts.
• • Update software as soon as it is possible. Bad actors will exploit flaws in outdated systems. Utilize automatic updates for all devices, applications and operating systems. Never allow end-of-life systems to be used and connected to the organization’s environment.
• • Think before clicking on links or opening attachments. Take the extra second to double check the sender’s email address (or text). Is this someone you typically receive correspondence from? Were you expecting the email or text and is the message asking for personal information?
• • Enable multi-factor authentication: something you know, something you have, something you are. This is significantly stronger since you would have something on you (fingerprint, cell phone), in addition to just a password.

Cybersecurity awareness for all staff, doctors and owners can reduce the risk of a cyberattack that could ultimately ruin the organization.

HIPAA compliance isn’t a one-time checklist. It’s ongoing, programmatic in nature, and requires demonstrated reasonable diligence to stay in good standing with the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR). ANATOMY_IT. can provide you peace of mind with our expert HIPAA compliance services. Contact us here to learn more.