Clearwater

News Room

health data management

How state AGs are ramping up general HIPAA enforcement

August 19, 2019

Efforts by the federal Office of Civil Rights to investigate data breaches at healthcare organizations are of great concern to security and compliance officers at healthcare organizations.

Read More

Investing Wisely in Cybersecurity

August 14, 2019

Jon Moore, Chief Risk Officer at Clearwater Compliance LLC, based in Nashville, Tennessee, said the survey essentially reflected what he sees in the industry.

Read More
Business Insider

Clearwater Helps UberHealth Build a Strong HIPAA-Compliant Infrastructure

August 8, 2019

Although the healthcare industry has been notoriously resistant to change, its transformation at the hands of digitization has recently picked up pace.

Read More
Bloomberg Law

Ransomware Hits Smaller Hospitals, Clinics Least Prepared for It

July 31, 2019

Olean Medical Group CEO Christine Strade received a text June 11 telling her the group’s electronic medical record system was down. That’s how she learned her company had been cyber-attacked.

Read More
cyber-defense-magazine

Securing The Remote Patient Monitoring Ecosystem (page 40)

July 2, 2019

Every CISO knows that April, 2019 was a grim milestone: the worst month for healthcare data breaches
since 2010, when the Office for Civil Rights began reporting healthcare data breaches of 500 individuals
or more publicly. In April, 44 breaches were reported and the medical records of nearly 700,000 people
were compromised.

Read More
HealthITSecurity

Small Providers Still Struggling with Cybersecurity, Risk Management

July 2, 2019

A new report from KLAS and CHIME find that while large organizations are becoming more sophisticated in their cybersecurity strategies, smaller providers are not keeping pace with governance, risk management, and other security elements.

Read More

Clearwater Supports First-in-the-Nation Healthcare Cybersecurity Leadership Program

July 1, 2019

Clearwater is proud to announce that Executive Chairman Bob Chaput has been invited to be part of the faculty for a new professional certificate program offered by the University of Texas. Titled Leadership in Healthcare Privacy and Security Risk Management, the first-in-the-nation certificate is designed to help fill the acute need for a trained, non-technical workforce to protect healthcare systems in Texas and our nation from fast-evolving cybersecurity threats.

Read More
healthcare info sec

Medical Device Cybersecurity: The Top Challenges

June 25, 2019

Identity and access management continues to be a top medical device cybersecurity challenge, says security expert Mark Identity and access management continues to be a top medical device cybersecurity challenge, says Clearwater security expert Mark Sexton. “A number of these devices cannot be integrated into normal technical controls, like Active Directory, that you use on your network to manage user access and monitor that activity,” he notes in an interview with Information Security Media Group.

Read More

Press Releases

Clearwater Partners with NSA Centers of Academic Excellence To Advance Cyber Defense Education

Clearwater Partners with NSA Centers of Academic Excellence To Advance Cyber Defense Education Company’s IRM|Pro Software Prepares Students to Meet […]

Clearwater Adds Cybersecurity Expert Cathie Brown as Vice President of Professional Services

Clearwater, a top-ranked provider of healthcare cyber risk software and consulting services, today announced the appointment of Cathie Brown as Vice President, Professional Services. Ms. Brown brings more than 30 years of experience in healthcare, health information technology, health information security and consulting.

Company Blog

Understanding What Constitutes OCR-Quality Risk Analysis™

In the first half of 2019, there were 223 reported breaches affecting 10.2 million individuals, an increase of 167% over the same period in 2018. These figures do not include the widely publicized American Medical Collections Agency breach, which is estimated to have affected at least 22 million individuals on its own.

Understanding the True Cost of a Data Breach

In the case of American Medical Collection Agency’s (AMCA) highly publicized data breach, the cost proved unrecoverable as the 42-year-old parent company Retrieval-Masters Credit Bureau filed for bankruptcy just weeks after disclosing the breach.
Organizations should calculate the risk of a data breach, not only for covered entities but also for their business associates. A breach of your patient data will affect your organization, even if it’s by a business associate.

State Attorney General HIPAA Enforcement Ramps Up, Value of an OCR-Quality Risk Analysis™ Has Never Been Higher

Many Chief Information Security Officers and Chief Compliance Officers often express concern to us about the potential disruption and cost that can come from an Office for Civil Rights (OCR) investigation, not to mention the reputational damage that will result from a settlement or monetary penalty. An appearance on the wall of shame is a mere blemish compared to the negative publicity of an OCR fine or settlement. However, the possibility of a State Attorney General (AG) action is often underestimated and overlooked. If a State AG enforcement is not top of mind for you and your board, it should be.

Interested in how the solutions featured in this case study could help your organization?