Information Security
HIPAA Cybersecurity Checklist
🔒

HIPAA Cybersecurity Checklist

1
Identify all PHI that your organization manages
2
Map the flow of PHI within organization
3
Conduct a detailed risk assessment
4
Deploy a secure, encrypted HIPAA-compliant network
5
Implement strong data security policies and procedures
6
Establish policies for managing remote and mobile device access to PHI
7
Provide ongoing training to all staff members about HIPAA and cybersecurity best practices
8
Implement a reliable backup and data recovery plan
9
Regularly evaluate the effectiveness of your cybersecurity measures
10
Deploy a strong access control system
11
Implement a policy for regular and timely updates of all systems
12
Conduct penetration testing
13
Approval: Cybersecurity Consultant's review of network
14
Address identified vulnerabilities and risks
15
Perform routine system maintenance
16
Audit policies and procedures regularly
17
Respond and report any security incident
18
Remedy security breaches in a timely manner
19
Continually update policies and procedures as necessary
20
Approval: Board's review of cybersecurity measures