NIST to Offer HIPAA ToolkitWill Help With Security Rule Compliance
Exeter Government Services of Gaithersburg, Md., will develop the toolkit under a contract valued at $720,000. The application will be posted on the NIST website when it's completed. The federal economic stimulus package provided funding for the project.
"The toolkit will help organizations better understand the requirements of the HIPAA Security Rule, implement those requirements, and assess those implementations in their operational environment," according to NIST.
The HIPAA Security Rule, which went into effect in 2005, requires covered entities, such as hospitals, clinics and health insurers, to conduct a risk assessment and take action to mitigate any risks identified. The HITECH Act electronic health record incentive program includes the same requirement.