HIPAA/HITECH Act Compliance
Do your safeguards need a check-up?
On February 17, 2010 the Health Information Technology for Economic and Clinical Health (HITECH) Act was passed changing the landscape of the healthcare industry dramatically. Incentives, sanctions and penalties regarding non-compliance with the security and privacy of electronic protected health information were implemented for healthcare providers and their business associates.
The HITECH Act requires administrative, physical and technical safeguards in each covered entity and business associate.
The HITECH Act has established new provisions for the safeguarding of Protected Healthcare Information (PHI) by healthcare organizations (covered entities) and business associates. Organizations required to comply with the Health Insurance Portability and Accountability Act of 1996 (HIPAA) are subject to new regulations issued by the HHS for breach notification.
Kaufman, Rossin can help. Our team of nationally certified information security consultants adheres to globally accepted standards, HIPAA Security Rule and HITECH Act to meet your most challenging compliance and information security needs.
Our services include:
- Compliance
- HIPAA Security Rule/HITECH Act Compliance
- Identity Theft Red Flags Compliance
- Privacy Audit
- Internal Audit Support
- IT Governance and Program Development
- Risk Analysis and Risk Management Plan
- Information Security policies and procedures documentation
- Disaster Recovery / Contingency Plan
- Red Flags Identity Theft Program
- Information Security Program
- Business Associates Management / Due Diligence
- Incident Response and Notification Program
- Retention and disposal procedures
- Security Testing and Assessment
- Network Security Testing (Internal and External)
- Wireless Security Testing
- Vulnerability Scanning (Internal and External)
- Social Engineering Testing
- Physical Penetration Testing
- Assurance
- Service Organization Control Reports
- SysTrust
Key Contacts
Jorge Rey, CISA, CISM
Principal, Cybersecurity & Compliance
As the Cybersecurity and Compliance Principal, Jorge brings his expertise in cybersecurity and information privacy to the firm's clients.Jorge helps organizations ranging from startups to large public and privately held companies address information security, compliance and IT needs. He bring…
Jeffrey Bernstein
Director of Cybersecurity and Data Privacy, Risk Advisory Services
Jeffrey Bernstein is a director in Kaufman Rossin's Risk Advisory Services practice. His focus includes cybersecurity strategy, governance, investigation, response, compliance, training and intelligence.
Jeff has extensive experience providing cybersecurity governance, risk and compliance ser…
Daniel Rosenberg, CISA, CPA
Director, Cybersecurity & Compliance
Daniel Rosenberg is a director in Kaufman Rossin’s Risk Advisory Services practice, where he performs cybersecurity and compliance services.
Daniel plans and executes attestation engagements on System and Organization Controls (SOC) 1, 2, and 3 reports, and consulting engagements with a speciali…
Jorge Rey, CISA, CISM
Principal, Cybersecurity & Compliance
As the Cybersecurity and Compliance Principal, Jorge brings his expertise in cybersecurity and information privacy to the firm's clients.Jorge helps organizations ranging from startups to large public and privately held companies address information security, compliance and IT needs. He bring…
Jeffrey Bernstein
Director of Cybersecurity and Data Privacy, Risk Advisory Services
Jeffrey Bernstein is a director in Kaufman Rossin's Risk Advisory Services practice. His focus includes cybersecurity strategy, governance, investigation, response, compliance, training and intelligence.
Jeff has extensive experience providing cybersecurity governance, risk and compliance ser…
Daniel Rosenberg, CISA, CPA
Director, Cybersecurity & Compliance
Daniel Rosenberg is a director in Kaufman Rossin’s Risk Advisory Services practice, where he performs cybersecurity and compliance services.
Daniel plans and executes attestation engagements on System and Organization Controls (SOC) 1, 2, and 3 reports, and consulting engagements with a speciali…
Jorge Rey, CISA, CISM
Principal, Cybersecurity & Compliance
As the Cybersecurity and Compliance Principal, Jorge brings his expertise in cybersecurity and information privacy to the firm's clients.Jorge helps organizations ranging from startups to large public and privately held companies address information security, compliance and IT needs. He bring…
Jeffrey Bernstein
Director of Cybersecurity and Data Privacy, Risk Advisory Services
Jeffrey Bernstein is a director in Kaufman Rossin's Risk Advisory Services practice. His focus includes cybersecurity strategy, governance, investigation, response, compliance, training and intelligence.
Jeff has extensive experience providing cybersecurity governance, risk and compliance ser…
Daniel Rosenberg, CISA, CPA
Director, Cybersecurity & Compliance
Daniel Rosenberg is a director in Kaufman Rossin’s Risk Advisory Services practice, where he performs cybersecurity and compliance services.
Daniel plans and executes attestation engagements on System and Organization Controls (SOC) 1, 2, and 3 reports, and consulting engagements with a speciali…
Jorge Rey, CISA, CISM
Principal, Cybersecurity & Compliance
As the Cybersecurity and Compliance Principal, Jorge brings his expertise in cybersecurity and information privacy to the firm's clients.Jorge helps organizations ranging from startups to large public and privately held companies address information security, compliance and IT needs. He bring…
Jeffrey Bernstein
Director of Cybersecurity and Data Privacy, Risk Advisory Services
Jeffrey Bernstein is a director in Kaufman Rossin's Risk Advisory Services practice. His focus includes cybersecurity strategy, governance, investigation, response, compliance, training and intelligence. Jeff has extensive experience providing cybersecurity governance, risk and compliance ser…
Daniel Rosenberg, CISA, CPA
Director, Cybersecurity & Compliance
Daniel Rosenberg is a director in Kaufman Rossin’s Risk Advisory Services practice, where he performs cybersecurity and compliance services.Daniel plans and executes attestation engagements on System and Organization Controls (SOC) 1, 2, and 3 reports, and consulting engagements with a speciali…
Latest Insights
Featured Blog
How Can You Protect Patient Data from Growing Cyber Threats?
Featured News
Strategies for Hospitals to Stay ‘Cybersafe’ During a Pandemic
Business Consulting | September 02, 2013
Business Associates Are in Healthcare Data Breach Spotlight This Year
Resources
Infographic
Real Estate Trends to Watch in South Florida
Infographic
Women leaders sharpen focus on DEI
Video
Cybersecurity Steps to Maintain a Resilient Hybrid Workplace
Survey
2022 Broward Executive Survey Results
Video
Retailers: Take Action to Future-Proof Your Business
Survey