Need Assistance?
Would you like more assistance regarding EHR Selection and Contracting strategies or support in using any of the included resource sets?

  Request Support

 

Upcoming Events
The Quadruple Aim
Quadruple Aim

A Conceptual Framework

Improving the U.S. health care system requires four aims: improving the experience of care, improving the health of populations, reducing per capita costs and improving care team well-being. HITEQ Center resources seek to provide content and direction aligned with the goals of the Quadruple Aim

Learn More >

Overview

This section provides resources and guidance for the selection of an electronic health record (EHR) vendor and product. Tools are available that can be used as part of a structured process to identify and procure the EHR system that fits the functionalities and needs of your center, and which will support developing a mutually beneficial relationship with the software vendor for successful EHR implementation.  Tools and resources are available to help assess organizational readiness and financial resources, and to develop a communication plan, workflow redesign, migration plan, and solicitation and negotiation for EHR vendor selection.  

Identifying and Selecting EHR
Strategic Cybersecurity Breach Protection and Incident Response
HITEQ Center
/ Categories: Privacy and Security, Privacy & Security Best Practices, HIPAA, Security Risk Analysis, Breach Mitigation & Response

Strategic Cybersecurity Breach Protection and Incident Response

Guidance and Resources for Health Centers

General cybersecurity guidance would suggest that Health IT breach should not be considered a matter of “if”, but rather a matter of “when”. How an organization prepares and responds to an episode of breach is just as important as defending itself from breach. Unfortunately, Health Centers are perceived as a domain with high potential for data breach, and consequently it is critical for Health Center leadership to embrace breach mitigation and incident response planning across their entire organization vs being a matter to be addressed by their Health IT team. Breach can occur through both internal and external network leaks, through malware such as ransomware and through physical means on site. This is Part 2 of the Health Center Defense Against the Dark Web presentation series. This presentation provides general knowledge about breach mitigation and planning strategies for incident response.

Access the presention, as well as several other helpful references and resources below!

Print
26275
Tags: HIPAANISTcybersecuritysecure messagingpasswordspassword policyauthenticationsecurity measurescybersecurity defender
Intended AudienceHealth Center IT Leadership, All Health Center Staff, Health IT Staff, Privacy & Security Staff

Documents to download

Resource Links

  • NIST Computer Security Incident Handling GuideComputer security incident response has become an important component of information technology (IT) programs. Because performing incident response effectively is a complex undertaking, establishing a successful incident response capability requires substantial planning and resources. This publication assists organizations in establishing computer security incident response capabilities and handling incidents efficiently and effectively.
  • ......Health Center Defender Against the Dark Web

Related Resources

Acknowledgements

This resource collection was compiled by the HITEQ Center staff with guidance from HITEQ Advisory Committee members and collaborators of the HITEQ Center.