NIST to Offer HIPAA Toolkit

Will Help With Security Rule Compliance
NIST to Offer HIPAA Toolkit
The National Institute of Standards and Technology has hired a contractor to develop a toolkit to assist healthcare organizations in complying with the HIPAA Security Rule.

Exeter Government Services of Gaithersburg, Md., will develop the toolkit under a contract valued at $720,000. The application will be posted on the NIST website when it's completed. The federal economic stimulus package provided funding for the project.

"The toolkit will help organizations better understand the requirements of the HIPAA Security Rule, implement those requirements, and assess those implementations in their operational environment," according to NIST.

The HIPAA Security Rule, which went into effect in 2005, requires covered entities, such as hospitals, clinics and health insurers, to conduct a risk assessment and take action to mitigate any risks identified. The HITECH Act electronic health record incentive program includes the same requirement.


About the Author

Howard Anderson

Howard Anderson

News Editor, ISMG

Howard J. Anderson is news editor of Information Security Media Group and was founding editor of HealthcareInfoSecurity and DataBreachToday. He has more than 34 years of journalism experience, with a focus on healthcare information technology issues. Before launching HealthcareInfoSecurity, he served as founding editor of Health Data Management magazine, where he worked for 17 years, and he served in leadership roles at several other healthcare magazines and newspapers.




Around the Network