Cyber Security and HIPAA

Cyber Security and HIPAA

It should be well understood that malicious cyber activity threatens the public’s safety and our national and economic security. The threat of cybercrime is such that the Federal Government has made the FBI the lead federal agency for investigating cyber-attacks and intrusions.

In addition to the FBI, the Federal Government has other agencies and legislation that also deal with Cyber Security. For example, the Health Insurance Portability and Accountability Act (HIPAA) deal with, among other things, the protection of patient information as the same, is used, transmitted or stored.

HIPAA actually has two major subcomponents, HIPAA Privacy and HIPAA Security. HIPAA Privacy provides federal protections for personal health information (PHI) held by covered entities and gives patients an array of rights with respect to that information. At the same time, the Privacy Rule is balanced so that it permits the disclosure of personal health information needed for patient care and other important purposes.

HIPAA Security refers to the regulations regarding measures for protecting the integrity, confidentiality, and availability of electronic personal health information (e-PHI) that is held or transmitted by covered entities or Business Associates. HIPAA Security also requires that a Security Risk Assessment be completed to establish a baseline and a plan of action (security management plan) dealing with activities designed to improve the protection against cyber-attacks.

In reality, we all should look into a kind of Security Risk Analysis to protect our own devices and personal network against these types of crimes. The FBI has a web page for cybercrime where they recommend all individuals to protect themselves through the use of the right security measures and being alert and aware when connected.

For more information about common crimes and risks visit:

Shopping Cart