The HIPAA Security Rule contains specific protections that all providers must employ to protect the people, information, technology, and facilities used to deliver care. Action plans should be based on risks identified in your risk analysis and typically include:
Security is not a one-time project, but rather an ongoing challenge to tackle as your organization and technologies change.
View these resources in the HIPAA Security Series to develop a sound plan:
What You Need to Know
How to Ensure Privacy and Security