Read some of the latest press about Clearwater Compliance, along with articles that our subject matter experts have contributed to.

  • compliance-today

Building a Business Case for Cybersecurity Investments

December 5th, 2016|0 Comments

Clearwater Compliance, CEO, Bob Chaput shares insights on the ever-increasing number of threats to healthcare information and how conducting a bona fide risk assessment is a first step in building a business case.

Download the December issue of Compliance Today Magazine.

  • Cybersecurity 500

Clearwater Compliance is featured 11th on the Cybersecurity 500 List

December 2nd, 2016|0 Comments

Clearwater Compliance, a leading cybersecurity firm founded and operated by C-Suite health care executives, is No. 11 on the Cybersecurity 500 and poised for continued growth over the next several years

Read the full article at Cybersecurity Ventures.

  • cybersecurity-jobs

Hospitals sorely lack cybersecurity workforce, need staff-wide engagement, experts say

December 1st, 2016|0 Comments

Bob Chaput, CEO of healthcare cybersecurity firm Clearwater Compliance, agreed that healthcare is playing a serious game of catch-up when it comes to both the adoption and implementation of information technology, as well as information security.

Read the full article at Healthcare Finance.

  • MedCity News

‘Cybersecurity has become a full-time job’ in healthcare

November 28th, 2016|0 Comments

 

If 2015 was supposed to be the “year of the hack” in healthcare, cybercriminals really were just getting started. This year we have seen the rise of ransomware targeting healthcare organizations, plus continued phishing attacks and even some good, old-fashioned laptop theft.

Read the full article at MedCity News.

  • cso2

Hospitals lack staff needed to combat cyber attacks

November 21st, 2016|0 Comments

Healthcare is the most cyber-attacked industry, and it needs to hire up.

The cybersecurity workforce shortage — which has 1 million job openings in 2016, and is projected to reach 1.5 million by 2019 — is especially acute at hospitals and healthcare providers, according to one industry expert.

You can view the release at CSO

  • nashville-post

Clearwater Compliance adds senior VP

November 21st, 2016|0 Comments

Industry pro to lead hospital cybersecurity company’s brand strategy, marketing efforts.

Nashville-based hospital cybersecurity and compliance solutions company Clearwater Compliance has named Barry Mathis as senior vice president and chief business development officer.

You can view the release at Nashville Post

  • beckers-health-it

6 recent RCM hires

November 17th, 2016|0 Comments

Clearwater Compliance, a provider of hospital cybersecurity and compliance solutions, added to its leadership team by naming Barry Mathis as senior vice president and chief business development officer.

You can view the release at Becker’s Hospital CFO

  • Clearwater Compliance

Clearwater Compliance Appoints New Executive Leader to Accelerate Demand for Respected Brand

November 17th, 2016|0 Comments

Barry Mathis Instrumental in Driving Next Phase of Growth and Innovation for Hospital Cybersecurity Company

NASHVILLE, Tenn.–(BUSINESS WIRE)–Clearwater Compliance, a leading provider of hospital cybersecurity and compliance solutions, today announced a significant expansion of its leadership team by naming Barry Mathis as senior vice president and chief business development officer reporting to Clearwater chief executive officer Bob Chaput.

You can view the release at BusinessWire.

  • healthcareitnews

Privacy and Security Forum Boston: What to expect

November 16th, 2016|0 Comments

Experts will convene at the HIMSS and Healthcare IT News event to discuss best practices for cybersecurity, fending off attackers, sharing threat intelligence, learning from the dark web, grappling with budget realities and more.

You can view the release at Healthcare IT News

  • health-system-logo

The Importance of Improving Medical Device Security

November 14th, 2016|0 Comments

Enhancing medical device security requires collaboration

Sociologists call it “the diminishing returns of complexity.” It’s the point where a major innovation (like the wireless IV medication infusion pump) begins to have some drawbacks – like the possibility that these devices can be hacked in a way that can lead to life-threatening complications.

You can read the article at Health System Management

  • trump

Trump’s Impact on Health Data Privacy, Security

November 10th, 2016|0 Comments

Experts Weigh In on Short-Term, Long-Term Implications of Election

The transition to a Donald Trump administration likely won’t have a significant immediate impact on HIPAA enforcement or other healthcare privacy and security regulatory activity – but it could over the long haul. That’s the consensus of CISOs, CIOs and other privacy and security experts who offered reactions to Trump’s surprise victory in the Nov. 8 election.

You can view the article at Healthcare Info Security.

  • 2015-08-03_1702

Clearwater American Hospital Association Exclusive Endorsement

November 6th, 2016|0 Comments

Learn how the AHA rigorously completed your due diligence for you and granted Clearwater Compliance its exclusive endorsement for all of Clearwater’s Software and Professional Services!

[…]

  • cso2

Healthcare Industry Is The Bullseye For Hackers In 2017

October 31st, 2016|0 Comments

Ransomware is on the rise at hospitals in the U.S. and globally.

“Healthcare is the most cyber attacked industry according to the 2016 IBM X-Force Cyber Security Intelligence Index. In the same report just a year ago — when financial services held the top spot — healthcare wasn’t even in the top six.

Attacks on the healthcare sector are up 35 percent year to date vs. this time last year, Cybersecurity Ventures found in its recent 2016 Cybercrime Report.”

You can view the article at CSO

  • hrmr

Clearwater Introduces Managed Solution To Help CIOs and CISOs

October 28th, 2016|0 Comments

The American Hospital Association is talking about Clearwater’s New Cyber Risk Services Solution

“Due to the constantly evolving threats to information security, hospital leaders today need a comprehensive, cost-effective approach to safeguard a hospital’s data, systems and reputation, and we are pleased to endorse Clearwater’s latest solution so hospitals can continue their proactive efforts around cybersecurity.”

You can view the article at Healthcare Risk Management Review News

  • health-system-logo

Solution to Help Hospitals Manage Evolving Cybersecurity Risks Announced

October 26th, 2016|0 Comments

With cybersecurity breaches on the rise, hospitals rush to find solutions to secure their systems as effectively as possible.

Clearwater Compliance, a leading provider of healthcare compliance and information risk management (IRM) services has announced the availability of Cyber Risk Services™ (CRS™), a new managed solution endorsed by the American Hospital Association and designed to help CIOs and CISOs achieve rapid visibility and advancement in the information security compliance and risk management posture of healthcare organizations.

The highly visible and significant public attention to ransomware attacks in healthcare has accelerated a top-down cyber risk governance process and board-level involvement. While hospital boards […]

  • hit-leaders-news

Clearwater unveils cybersecurity service to fight ransomware and other incidents

October 20th, 2016|0 Comments

The intent is to help healthcare CIO and CISOs improve IT compliance and risk management posture, as well as information resource management.

Clearwater Compliance, a provider of healthcare compliance and information risk management services, released Cyber Risk Services, an information and cybersecurity program endorsed by the American Hospital Association, the company is set to announce shortly.

Launched in response to the increase in ransomware attacks, the program is designed to help CIOs and CISOs improve information security compliance and risk management posture within their organizations.

And when an incident occurs, CRS will provide onsite support within two business days, in case of an […]

  • hit-leaders-news

OCR getting tougher about information security

October 12th, 2016|0 Comments

In the healthcare field, the word “audit” is about as welcome as the word “Zika.” But it’s inevitable that there will be more audits this year, in addition to investigations, related to information security shortcomings.That’s because the Office for Civil Rights (OCR) has moved from the concept of performance audits in 2012, focused on efforts to comply, to compliance audits in 2017, focused on evidence of practice. And this year and beyond, an audit can result in a full-blown OCR investigation based on the severity of identified weaknesses or gaps.

What happened? Last September, the Office of the Inspector General issued […]

  • The Compliance and Ethics Blog

The Threat is Real: A Recommended Approach to Cybersecurity and Patient Safety

October 10th, 2016|0 Comments

Information security and cyber risk management has become an essential component of ensuring patient safety. Concurrently, the threat environment for healthcare organizations has significantly changed and expanded. The net effect of these developments is that traditional approaches to patient safety and information security may not be aligned with the current threat environment, which can lead to gaps in how patient safety and medical data are protected.In response, healthcare organizations are implementing not only new methods to protect patients and systems, but new models for their patient safety, information security, and risk management efforts. One effective model is to implement an […]

  • cc

A CIO, consultant and infosec vendor nail down cybersecurity best practice lists

October 10th, 2016|0 Comments

Aetna CISO Jim Routh, who previously worked in financial services, offered his advice, as did Bob Chaput, CEO of Clearwater Compliance and Dan Wiley, who heads Check Point Software’s incident response and threat intelligence work.

Read the entire article at Healthcare IT News.

  • screencapture-Compliance and Information Risk Management Blog - Clearwater Compliance-2016-02-01

New Ponemon Study Reveals the State of Cybersecurity in Healthcare Organizations in 2016

October 4th, 2016|0 Comments

Healthcare organizations are in the crosshairs of cyber attackers at the rate of one cyber attack per month. This is the key finding of a recent Ponemon study, The State of Cybersecurity in Healthcare Organizations in 2016.

According to the study, healthcare organizations are experiencing an average of 11.4 cyber attacks per year. Further, almost half of the respondents (48 percent) said their organizations have experienced an incident involving the loss or exposure of patient information in the past 12 months.

The increasing frequency of attacks means that many patients are at risk for medical identity theft, and organizations are at […]

  • cc

Tech Remedies for Regulatory Compliance

October 1st, 2016|0 Comments

“Oftentimes people feel that if you’re compliant, you must be, by definition, secure,” says Bob Chaput, founder and CEO of Clearwater Compliance, a Nashville supplier of compliance and cyber-risk services. “It’s not true. Similarly, you can be very secure but not compliant with certain regulations. So we encourage organizations to think about not only those two risks, which are inextricably linked, but also about other risks with which they’re linked or they may trigger. For example, financial risk or reputational risk, or the risk if you don’t have the ability to attract and retain talented people.”

“There is no such thing […]

  • beckers-health-it

Calculating the True Cost of a Healthcare Data Breach

September 27th, 2016|0 Comments

Healthcare data breaches come in all sizes and varieties – from the massive breach of 80 million patient and employee records at insurance giant Anthem to a stolen iPhone containing about 400 unencrypted patient records at Catholic Health Care Services in Philadelphia.

Even “small” breaches can be costly. The Catholic Health breach resulted in a $650,000 regulatory fine and a two-year corrective action plan.

According to the latest Ponemon Institute study, the healthcare field has the highest cost per breached record of any industry: $402. That adds up to $4 million for 10,000 records – about twice the cost of […]

  • hit-leaders-news

OCR guidance should shape your risk management program

September 20th, 2016|0 Comments

Controls-based “checklists” and dubious certifications will not adequately protect a healthcare organization’s sensitive digital assets. What willwork is a formal Information Risk Management (IRM) program designed to grow more effective and mature over time.

Two documents from the Office for Civil Rights (OCR) reveal what the HIPAA regulatory arm of the federal government believes are appropriate for determining an organization’s level of compliance and information security as required by HIPAA: the Phase 2 Audit Protocol that covers all three HIPAA regulations and OCR’s Final Guidance on Risk Analysis, which is specific to the HIPAA Security Rule and information risk management.

You should […]

  • hit-leaders-news

Chasing certifications won’t prevent data breaches

August 30th, 2016|0 Comments

In the electronics industry, the UL stamp of approval means that a product has been deemed safe. But in the healthcare field, there isn’t a single certification that ensures that Protected Health Information is safe – or that risks are being properly managed.

Even if such a silver bullet existed, a certification cannot guarantee that your organization will never suffer a data breach, complaint or penalty from the Office for Civil Rights (OCR).

Any healthcare organization that places its trust solely in the payment card industry standard (PCI-DSS), HITRUST or Service Organization Controls 2 (SOC 2) is on shaky ground. That’s because […]

  • cc

The Right Way to Present a Business Case for Cybersecurity

August 19th, 2016|0 Comments

There’s an ever-increasing number of threats to healthcare information.  Healthcare information is more valuable and visible than ever; and, at the same time, more vulnerable than ever.  You feel responsible and, as the CISO, you are responsible for its security.  Conducting a comprehensive, bona fide risk assessment can be an effective first step in building credibility with the executive team and board and, therefore, in building a business case for cybersecurity investments in your organizations.  In addition to conducting the risk assessment, you should:

  • Find a sponsor on the executive team to use as a sounding board on risk appetite, sufficiency […]
  • beckers-health-it

5 game-changing issues in data security

August 19th, 2016|0 Comments

In military history, it’s called “fighting the last war”: addressing yesterday’s threats while today’s go unrecognized.

Many healthcare organizations are doing exactly that by being blind to the newest threats to the Protected Health Information (PHI).

The environment in PHI risk is changing rapidly. In recent years, most data breaches were the result of lost laptops and other employee miscues. Today, intentional attacks have surpassed inadvertent mistakes as the leading cause of PHI incidents. Criminal hacks against healthcare organizations have increased 125 percent since 2010 – and last year were the leading cause of data breaches for the first time.

Read […]

  • beckers-health-it

Making the case for comprehensive cyber-risk strategies: 10 startling facts that will spur C-suite action

August 8th, 2016|0 Comments

According to Jim Trainor, deputy assistant director of the FBI Cyber Division, “Major intrusions into healthcare providers’ computer systems now are happening at the pace of two or three a day.”

The largest healthcare data breach to date involved the insurance giant Anthem, in which about 80 million patient records were compromised. The cost of cleaning up the Anthem data breach is likely to exceed its $100 million cyber-liability insurance cap.2 Few healthcare organizations can handle a blow that devastating. Yet most healthcare C-suite leaders haven’t paid close enough attention to the fast-changing environment in data security.

Here’s the problem in a […]

  • ct-2016-08-250x324

Building Capability and Capacity to Take on Healthcare’s Evolving Security Threats

August 5th, 2016|0 Comments

Traditional approaches to patient safety and healthcare information security will need to evolve to address today’s emerging threats. The current risk environment for hospitals and healthcare organizations is changing quickly and includes a wide spectrum of threats — ranging from traditional intrusions designed to steal protected health information (PHI) to more novel and emerging attacks, such as tampering with medical devices or blocking access to essential records systems. The changing threat environment is blurring the lines between information security and patient safety and is requiring each discipline to expand its scope. Healthcare leaders now must consider what could happen if […]

  • The Compliance and Ethics Blog

It’s All About Risk Management! OCR Release Guidance on Ransomware – “Your Money or Your PHI”

May 13th, 2016|0 Comments

The Office for Civil Rights (“OCR”) released guidance on July 11, 2016 regarding ransomware and HIPAA. This guidance outlines activities supported by HIPAA that will assist Covered Entities and Business Associated in either preventing or quickly responding to ransomware attacks. To illustrate, the guidance calls for:

  • Implementing a security management process, including conducting a risk analysis and mitigating identified risks;
  • Implementing processes and technology to guard against and detect malicious software;
  • Training users on malicious software protection and reporting of malicious software detections with specific emphasis on ransomware;
  • Implementing controls to limit access to ePHI; and
  • Maintaining an overall contingency plan.

The OCR advice identifies how […]

  • cio-review

Engineering Compliance and Information Risk Management

May 4th, 2016|0 Comments

In a recent article published by CIOReview, our CEO, Bob Chaput discusses how the cybersecurity industry is changing and what Clearwater can do to help your organization. Read the full article here.

  • 2016-05-03_0812

If Ransomware Is the Question, Then Information Risk Management Is the Answer

May 3rd, 2016|0 Comments

Ransomware is malicious software that compromises the availability of critical information.  Unlike other hacking forms, ransomware does not compromise the confidentiality or integrity of the data, nor does it require the hackers to sell the information to a 3rd party in order to benefit from the proceeds.

This article originally appear in the Compliance and Ethics blog. 

[…]

  • ENTERPRISE-SECURITY-LOGO-2016-hi-res

Clearwater Compliance Ranks in CIOReview’s Top 20 for Second Year in a Row

April 26th, 2016|0 Comments

Clearwater Compliance, a leading provider of healthcare compliance and cyber risk management solutions, today announced it has earned another spot on the “20 Most Promising Enterprise Security Companies 2016” list by CIOReview Magazine, for the second consecutive year. A technology magazine that focuses on enterprise solutions, CIOReview is a leading source for technology decision makers. […]

  • 2016-04-05_0757

Industry Addresses Challenges in Creating a Cybersecurity-Capable Workforce

April 5th, 2016|0 Comments

Today there are an estimated one million job openings in the cybersecurity industry, according to a Cisco report. That figure is expected to jump to 1.5 million unfilled positions by 2019.

This article was originally published in Cyber Defense Magazine

[…]

  • iapp_small

Clearwater to Exhibit at IAPP Global Privacy Summit

March 30th, 2016|0 Comments

Clearwater Compliance is proud to showcase its award-winning software and services related to health care information privacy and security as an exhibitor at the Global Privacy Summit this April in Washington, D.C. […]

  • cc

Clearwater Continues to Grow, Welcomes New VP of Customer Experience

March 17th, 2016|0 Comments

Clearwater Compliance is pleased to welcome Darin Moore to the company as Vice President of Customer Experience. […]

  • HIPAA_Summit

Clearwater Compliance to Showcase its Software at the 2016 National HIPAA Summit

March 8th, 2016|0 Comments

Clearwater Compliance is proud to once again be part of the country’s leading forum on health care data security and compliance. Clearwater is also a silver grantor of the event. […]

  • AHA_Endorsement

Clearwater Announces the American Hospital Association’s Extended Endorsement of Its Health Information Security Solutions

March 1st, 2016|0 Comments

Clearwater Compliance is proud to continue working with AHA Solutions, a division of Health Forum, the strategic business enterprise of the American Hospital Association (AHA), to provide exclusive resources and trusted solutions to AHA members. Clearwater’s Health Care Information Privacy, Security, Compliance and Risk Management Solutions have earned the exclusive endorsement of the American Hospital Association for the second year running. […]

  • KG_logoBIG

Clearwater Compliance, Knowledge Group Present “Harnessing the Power of NIST” Webcast

February 25th, 2016|0 Comments

Clearwater Compliance is proud to team up with the Knowledge Group to offer a webinar entitled “Harnessing the Power of NIST – Your Practical Guide to Effective Cybersecurity.” […]

  • logo-VA-HIMSS-CHIME_jpg-JPEG-Image-945x374-pixels_1269459243447-1

Clearwater Proud to Announce Partnership with AEHIS and CHIME

February 9th, 2016|0 Comments

Clearwater Compliance is pleased to announce its continued partnership with the Association for Executives in Healthcare Information Security (AEHIS), and is proud to begin a new relationship with the College of Healthcare Information Management Executive (CHIME) as a partner in 2016.
[…]

  • ACAP_PVlogo

Clearwater Compliance Selected as a Preferred Vendor of the Association of Community Affiliated Plans (ACAP)

February 2nd, 2016|0 Comments

Clearwater is honored to be included as a preferred vendor in ACAP’s “HIPAA-HITECH Compliance Software & Consulting” category once again. […]

  • AHLA

Clearwater and the American Health Lawyers Association (AHLA) Team Up to Present New Webinar on Risk Assessment January 25

January 21st, 2016|0 Comments

Clearwater Compliance is proud to partner with the American Health Lawyers Association (AHLA) to present an educational webinar, “What Counsel Needs to Know about Bona Fide Risk Analyses,” on January 25. […]

  • CFO blog

Using Captives For Cyber Risk Management

January 18th, 2016|0 Comments

If public insurance companies are finding it hard to underwrite cyber policies, how can a corporate-owned captive do it?

This article, was originally published on CFO.com

[…]

  • 2016-01-14_0959

Clearwater Makes List of Top 100 Cybersecurity Companies: Ones to Watch in 2016

January 14th, 2016|0 Comments

Clearwater Compliance is proud to once again be recognized as a leader in the cybersecurity industry, being named one of the “Top 100 Cybersecurity Companies: Ones to Watch in 2016” in a recent analysis by business intelligence provider Visiongain. […]

  • cc

Clearwater Compliance Expands Its Staff With New Key Members in Their Products and Services Teams

December 10th, 2015|0 Comments

Clearwater Compliance, LLC continues to expand its staff with the addition of new key professionals to their Products and Services Teams. […]

  • cybersecurity500logo

Clearwater Compliance Retains 11th Position on 2016 List of the Most Innovative Cybersecurity Companies in the World

December 2nd, 2015|0 Comments

Clearwater Compliance, LLC is proud that it has once again been included in Cybersecurity Venture’s List of Cybersecurity 500 innovative companies for the second year in a row.  The company retains the number 11 spot in this second edition of the Cybersecurity 500, which is a directory of the “hottest and most innovative” cybersecurity companies to keep an eye on in 2016. […]

  • D&B_Logo

Data Breaches: Eight Things That Will Shock Trustees

November 25th, 2015|0 Comments

Most boards of directors are beginning to understand the grave consequences of not paying close attention to information risk management. All of the items below have relevance for all board members, not just those in healthcare. […]

  • NIST framework whitepaper

Clearwater Compliance Publishes White Paper with Guidelines for Adopting the NIST Cybersecurity Framework for More Effective Information Risk Management

November 24th, 2015|0 Comments

Clearwater Compliance, LLC has published a new white paper discussing the importance of adoption of the National Institute of Standards and Technology (NIST) approach to Information Risk Management (IRM) to improve the way in which sensitive information is safeguarded in the healthcare industry. […]

  • aehis-foundationlink

Clearwater Compliance Founder and CEO Bob Chaput’s Announces Appointment to AEHiS Board for Second Year Running

November 18th, 2015|0 Comments

Clearwater Compliance, LLC announces that their Founder and CEO, Bob Chaput, has been appointed to the Association for Executives in Healthcare Information Security (AEHiS) Board for a three-year term.  […]

  • risk analysis free trial

Clearwater Compliance Offers a 30-Day Free Trial of Their Risk Analysis Software IRM|Analysis™

November 11th, 2015|0 Comments

Clearwater Compliance, LLC announces they are offering a 30-day free trial of their IRM|Analysis™ risk analysis software.  […]

  • FSU_CaseST_Logo_FINAL

Clearwater Compliance Helps Educate The Next Generation of Information Risk Management Professionals Through NSA Centers of Academic Excellence

October 27th, 2015|0 Comments

Clearwater Compliance, LLC is proud to broaden their educational reach through their new partnership with Ferris State University, a designated National Security Agency Center of Academic Excellence (NSA CAE).  The partnership provides Clearwater with the opportunity to give something back to the community and help safeguard our nation’s digital information assets.

[…]

  • cc

Clearwater Compliance Designated as the United States Air Force’s Sole Source Provider of Risk Analysis Software

October 20th, 2015|0 Comments

Clearwater Compliance, LLC has been designated as the sole source provider of risk analysis software for the United States Air Force. This announcement reflects an increase in the U.S. Air Force’s commitment to play their part in helping to keep veteran’s health and other personal information safe and secure. […]

  • SSO-STC-CCSAM-HashtagLogos-CYBERAWARESML

Clearwater Compliance Announces Partnership with the STOP. THINK. CONNECT. Campaign

October 14th, 2015|0 Comments

Clearwater Compliance, LLC announced this week that it has signed on as a partner of the nationwide global cybersecurity awareness campaign STOP. THINK. CONNECT. Clearwater’s partnership with the program is part of an increase in their education initiatives being launched in Cyber Security Awareness Month and will provide additional resources to help all digital citizens stay safer and more secure online.

[…]

  • 300x250

Clearwater Compliance Announces FBI Special Agent to Address “Cybersecurity in Healthcare” at Their Upcoming HIPAA Compliance BootCamp™

September 28th, 2015|0 Comments

October is National Cyber Security Awareness Month, and to recognize the importance of safeguarding sensitive information Clearwater Compliance is excited to announce a FBI Special Agent as its keynote luncheon speaker at its upcoming HIPAA Compliance Program BootCamp™ entitled “Improved Quality of Care & Patient Safety through Better Information Risk Management.” […]

  • 2015-09-17_0847

Hackers Are the Problem, Workers the Weak Point

September 24th, 2015|0 Comments

It only takes one employee clicking on the wrong link to give away the keys to the kingdom.

This article was originally published on CFO.com

[…]

  • 300x250b

Clearwater Compliance Announces National Privacy Experts to Present Panel Discussion at Their Upcoming HIPAA Compliance BootCamp™

September 23rd, 2015|0 Comments

Clearwater Compliance, LLC has announced that some of the health care industry’s leading information privacy experts will participate in a panel discussion focused on the importance of workforce training at their HIPAA Compliance Program BootCamp™ taking place in Miami during Cyber Security Awareness Month.  […]

  • BeckersBW_v2

5 Game-Changing Issues in Data Security

September 21st, 2015|0 Comments

The environment in PHI risk is changing rapidly. In recent years, most data breaches were the result of lost laptops and other employee miscues. Today, intentional attacks have surpassed inadvertent mistakes as the leading cause of PHI incidents. Criminal hacks against healthcare organizations have increased 125 percent since 2010 – and last year were the leading cause of data breaches for the first time.

Protecting PHI now depends on how well an organization responds to five critical challenges. […]

  • HIPAA Compliance Program education

Clearwater Compliance Announces a Marquis Panel of Speakers at the Upcoming 25th HIPAA Compliance BootCamp™ in Miami

September 15th, 2015|0 Comments

Clearwater Compliance has announced that a dozen HIPAA experts will join them to speak at their upcoming HIPAA Compliance BootCamp™ in south Florida on October 8th, 2015.

Entitled “Improved Quality of Care & Patient Safety through Better Information Risk Management”, this is the company’s 25th time offering this popular educational event which has been attended by delegates from major healthcare organizations all over the U.S. including Sentara Health Care, Symantec and Henry Ford Health Systems.

The BootCamp™ brings together experts in the field of information risk management and it allows attendees to learn, network and discuss key issues with peers. The marquis […]

  • cc

Daniel Spitzer Named Senior Director of Business Development by Clearwater Compliance

September 2nd, 2015|0 Comments

Clearwater Compliance has announced the addition of the newest member of its sales team. Daniel Spitzer, a California State University – East Bay graduate with over 12 years of professional experience working in healthcare and advising technology-based startups, has been named the company’s new Senior Director, Business Development.

[…]

  • 2015-07-14_0857

Risk Analysis Could Have Prevented OPM Misery

August 19th, 2015|0 Comments

The massive data breach at the Office of Personnel Management has already brought down director Katherine Archuleta and launched a class-action lawsuit by the American Federation of Government Employees. The breach has compromised sensitive records (including Social Security numbers) of an estimated 21.5 million people.

This article was originally featured on HealthcareITNews.com

[…]

  • 2015-07-09_0647

How to Prevent Data Breaches by Service Providers

August 17th, 2015|0 Comments

Large corporations and government agencies are increasingly suffering data breaches stemming from lax security on the part of their service providers. Investigators are learning that the gigantic breach at the Office of Personnel Management this summer may have been the result of two previous hacks experienced by its subcontractors.

This article was originally published on CFO.com

[…]

  • cc

Clearwater Compliance Continues to Expand, Welcomes Aaron Palazzolo as Director of Business Development in the South Florida Market

August 13th, 2015|0 Comments

The ongoing growth of Clearwater Compliance continues with the addition of a new Director of Business Development for the South Florida market. Aaron Palazzolo has assumed the role, bringing 14 years of experience in healthcare business development to the Clearwater team.

[…]

  • 2015-07-30_0642

Don’t Overlook Data Security Issues In Merger and Acquisition Deals

August 10th, 2015|1 Comment

Deloitte’s 2014 M&A Trends Report says that low interest rates and high cash reserves in addition to a desire for new markets, new products, and cost-saving consolidations have U.S. CEOs frothing to find the right partners quickly.  In this article we look at how to assess whether your acquisition target is prepared to deal with and defend against a data breach.

This article was originally published on CFO.com

[…]

Clearwater Compliance Announces Increased Continued Professional Education Credits for Their HIPAA Compliance Program BootCamp™

August 5th, 2015|0 Comments

Clearwater Compliance, LLC announces an increase in CEU/CPE credits available for attendees of their upcoming Clearwater HIPAA Compliance Program BootCamp™.

[…]

  • 2015-08-03_1702

Senior VP of the American Hospital Association Praises Clearwater Solutions

August 3rd, 2015|0 Comments

In this video Tony Burke, Senior Vice President of the American Hospital Association (AHA) and President of AHA Solutions talks about the growing need for information risk management solutions, and why they chose to endorse Clearwater Compliance solutions to meet that need. Learn how the AHA rigorously completed your due diligence for you!

[…]

  • aha_white_paper_cover

New AHA Solutions/Clearwater Compliance White Paper Explores Fast-Changing Data Security Issues

July 30th, 2015|0 Comments

AHA Solutions and Clearwater Compliance have released a new white paper examining the rapidly changing threat landscape in health care data security. Last year (for the first time ever), intentional attacks surpassed unintentional mistakes as the leading source of the compromise of Protected Health Information (PHI) security.

[…]

  • ghit

How 21st Century Cures Act Could Change HIPAA For The Better

July 23rd, 2015|0 Comments

I am surprised at the articles written about the 21st Century Cures Act (the “Cures Act”), which overwhelmingly passed the House of Representative last week. The main bullet points in most blogs center on the amount of money to fund NIH research and the speeding up of the FDA process for approving new drugs — some highlight the focus on the interoperability of health information technology for precision medicine.

Sure those things are big, but why is no one mentioning the potential expansion of the ability (but not the requirement) for covered entities and their business associates to share information for research purposes by defining health data research as part of healthcare operations?

[…]

  • aehis-foundationlink

The Association for Executives in Healthcare Information Security (AEHIS) Foundation Features Clearwater Compliance Insights on HIPAA Compliance and Risk Management

July 2nd, 2015|0 Comments

Clearwater continues strong partnership with AEHIS by offering educational webinars to members.

[…]

A Cybersecurity Summer Reading List for Hospital Boards

June 11th, 2015|0 Comments

Three years ago, most healthcare boards of directors knew more about online video games than online security. Now they’re paying very close attention to cybersecurity, especially the boards of for-profit health systems.

This article was originally published on Healthcare IT News.

[…]

Compliance: Just Part of Mature Information Risk Management

June 8th, 2015|0 Comments

HIPAA-HITECH compliance is really part of the broader business discipline of information risk management (IRM). Many healthcare organizations overestimate the strength of their IRM programs— and some are beginning to use so-called “maturity models” to determine how they actually stack up against key benchmarks.

This article was originally published in HCCA’s “Compliance Today” magazine .

[…]

  • cio_review_image

Clearwater Wins Place in List of Most Promising Cyber Security Solutions

June 8th, 2015|0 Comments

Clearwater Compliance is celebrating this week after it was announced they had made the Top 20 of CIOReview’s 20 Most Promising Cyber Security Solutions.

[…]

Shocks and surprises in new breach trend studies

May 20th, 2015|0 Comments

Since 2010, HHS has documented more than 1,000 major data breaches (where each incident involved the compromise of more than 500 patient records). Now we’re starting to see some in-depth analyses of those breaches.

[box type=”info”]This article was originally published on Healthcare IT News.[/box]

[…]

Clearwater Compliance to Host Information Risk Management Essentials Blue Ribbon Panel on May 28

May 14th, 2015|0 Comments

Clearwater Compliance will host another of its Blue Ribbon Panel discussions on Information Risk Management Essentials on May 28 from 11 a.m. to 12:30 p.m. Central time.

[…]

6 Ways to Combat Internal Threats to Data Security

May 12th, 2015|0 Comments

More than 9 out of 10 health-care data breaches affecting 500 or more individuals published on the U.S. Department of Health & Human Services website were caused by organizations’ own employees, not hackers.

This article was originally published on CFO.com.

[…]

Cybersecurity Legislation Only a Partial Solution

May 5th, 2015|0 Comments

Data breaches have grabbed headlines in recent months, and arguably none was more shocking than the one that occurred at Anthem, the nation’s second largest health insurer.

This article was  originally published on mHealthNews.

[…]

8 Steps to Stronger Information Risk Management

April 21st, 2015|0 Comments

Believe me, I know how hard it is to get funding to strengthen your information risk management program.  Ask pretty much any CEO to find the time to talk about risk management (much less formalize a risk management program) and you’re likely to get an eye roll.

This article was originally published on CFO.com.

[…]

More Press

103, 2016

Clearwater Announces the American Hospital Association’s Extended Endorsement of Its Health Information Security Solutions

Clearwater Compliance is proud to continue working with AHA Solutions, a division of Health Forum, the strategic business enterprise of the American Hospital Association (AHA), to provide exclusive resources and trusted solutions to AHA members. Clearwater’s Health Care Information Privacy, Security, Compliance and Risk Management Solutions have earned the exclusive endorsement of the American Hospital Association for the second year running. […]

2502, 2016

Clearwater Compliance, Knowledge Group Present “Harnessing the Power of NIST” Webcast

Clearwater Compliance is proud to team up with the Knowledge Group to offer a webinar entitled “Harnessing the Power of NIST – Your Practical Guide to Effective Cybersecurity.” […]

Published Articles

1411, 2016

The Importance of Improving Medical Device Security

Enhancing medical device security requires collaboration

Sociologists call it “the diminishing returns of complexity.” It’s the point where a major innovation (like the wireless IV medication infusion […]

3110, 2016

Healthcare Industry Is The Bullseye For Hackers In 2017

Ransomware is on the rise at hospitals in the U.S. and globally.

“Healthcare is the most cyber attacked industry according to the 2016 IBM X-Force Cyber Security […]

Contact Us

Our Expertise May Get Us Headlines, But Where It Really Matters Is In Our Work.

Contact us today for more information on how we can help your organization with it's HIPAA compliance and information risk management program.
Contact Us