Most Healthcare IT Security Breaches Result of Basic Security Lapses

When it comes to preventing IT security breaches in the healthcare industry a little bit of diligence goes a long way. In an annual report to Congress covering breaches of unsecured PHI in 2011-2012, the Department of Health and Human Services established that most breaches could have been prevented with basic security protocols. The vast majority of breaches fall into one of three categories: theft, loss, or unauthorized access/disclosure.

In most of these cases simple solutions such as encryption, two-factor authentication, and physical security protocols could have prevented the loss of protected health information. For example, let’s say that a laptop or other mobile device with PHI is lost or stolen. If it has proper encryption and requires multiple-factor authentication for access then there is a much lower chance of a breach.

Ensuring proper training regarding password security and awareness of phishing and other scams will reduce the likelihood of a breach. Lastly ensuring that you have proper physical security in place anywhere PHI is stored, whether it’s paper storage or servers, can prevent thefts and costly fines.

When it comes to preventing breaches and costly fines some basic security diligence and up-to-date protocols can go a long way. If you’re concerned about your IT security give ITPAC a call today.