Here is a new monthly post from the HIMSS Privacy and Security Committee…called PSST!. Keep reading to learn more about the column and this month’s topic – health IT security concerns in the cloud. Lisa Gallagher, Senior Director, Privacy & Security, HIMSS.
Healthcare security and privacy rules, regulations, and compliance requirements are increasing in complexity and ubiquity. The HIMSS Privacy and Security Committee continues to lead and navigate the way by creating relevant and reliable information that links the latest decision makers and policy sources to HIMSS membership.
Today, we launch an initiative that follows in that tradition—The “Privacy & Security Special Topic.”
The HIMSS Privacy and Security Committee often gets questions from membership via e-mail, phone calls, or “hallway consults.” Over time, we have noticed that these questions are often grouped into several topic headings. We decided it would be beneficial to share with all membership, and readers of the HIMSS Blog, various answers to these common questions with links to available resources.
This will happen each month.
In this blog and each month going forward, the HIMSS Privacy and Security Committee will sponsor a “Privacy and Security Special Topic,” called “PSST!” for short. We will publicize it using the HIMSS Blog and HIMSS social media outlets.
Over time, we hope you will find it useful AND will grow to anticipate its arrival! Our goal is to provide you all with a point-in-time reference to topics many of us have questions about.
In the form of a digest, this blog will serve as a reference point or a relevant literature search to quickly guide you through resources you have instant access to. You can access them now or you can save the blog for access later. Either way, we’ve done the leg work for you.
Our inaugural PSST! for March 2012 is “Health IT Security Concerns in the Cloud.”
As healthcare organizations look for better ways to maximize efficiency, streamline IT services, and reduce costs over the long run, the race to the “cloud” is on for every C-level leader in the business. However, in the race to get into the cloud, very important health IT security concerns cannot be forgotten.
Cloud computing and outsourcing data storage, service provisioning, and other cloud benefits, do not remove accountability for compliance. In fact, moving your data and services to the cloud can actually be a heavier risk management proposition.
A terrific first read for all of us who are interested in exploring the cloud for our organization would be Lisa Gallagher’s article, “Security Considerations for Healthcare Organizations Using Cloud Computing.”
Once you have reviewed Lisa’s article, you are ready to move into several other HIMSS resources, at your convenience. Of note, the work of the HIMSS Cloud Security Work Group has culminated in the publication of a Cloud Security Toolkit, part of the suite of HIMSS Privacy and Security Toolkits. Listed below is a link to some of the group’s work and additional resources.
-HIMSS Privacy and Security Cloud Security Tool Kit
-HIMSS Privacy and Security Virtual Briefing “Practical Solutions for a Changing Landscape”
-“Cloud Computing and Healthcare: Bad Weather or Sunny Forecast,” by Ofer Shimrat
-Gartner: CIO’s View of Cloud Collaboration: Choose Candidates Wisely
In conclusion, the HIMSS Privacy and Security Committee is excited to bring “PSST!” to you each month. Join us in discussing exciting and timely security topics and learning about HIMSS privacy and security resources.
- Got an idea for a future “PSST!”? Contact Sean Murphy; Chair, HIMSS Privacy and Security Committee, sean.murphy092009@gmail.com
