advanced search
Suggested IT Best Practices:
Assess the current state of the system, performing a gap analysis relative to the state of compliance
Implement any process improvements or new controls,       and remediate any identified vulnerabilities
Monitor each system to ensure that it is in line with the compliance requirements
Report on the compliance status   in a format that is intelligible to the   audit staff or other management
Have all unnecessary apps and computer services been eliminated   for each system?
 


  
 
 
Compliance Overview

HIPAA Compliance:  Health Insurance Portability and Accountability Act (HIPAA) regulations require organizations to enforce security controls that promote the confidentiality, integrity and availability of all personal health information.
Challenge:   HIPAA standards require organizations to use risk-based methods for protecting all health information. HIPAA specifies compliance guidelines for achieving a minimum security baseline in areas covering administrative and technical safeguards. HIPAA applies to any organization that processes, stores or manages personal health information electronically not just healthcare entities.
Solution: Marvin IT consultants utilize the Qualys security scanner which is ideal for healthcare institutions, insurance companies, and other organizations looking to achieve and prove HIPAA compliance quickly and cost-effectively. QualysGuard®, provides organizations and auditors with an automated, on demand system to assess and reduce network security risks for protecting electronic health information. Our consultants are also able to create HIPAA-specific reports to measure and document ongoing security compliance efforts.
 

Sarbanes-Oxley Compliance:  Sarbanes-Oxley Act of 2002 (SOX) was passed to make corporate executives more responsible for their companies' financial statements.
Challenge:  Section 404 of the Sarbanes-Oxley Act is relevant to information security as it requires management to demonstrate that they have established appropriate "internal controls" to safeguard an organization's financial processes. The regulation's internal controls specify that organizations safeguard financial data through the prevention and detection of security breaches that may have a material effect on financial statements.
 Solution:   Marvin Consultants utilize Qualys to help companies quickly and cost-effectively meet compliance with Section 404 of Sarbanes-Oxley by providing SOX-specific reports to measure, reduce and document ongoing efforts to safeguard electronic systems and data.             

 
Compliance Testing Pricing

  • "Without having to add more technical staffers, the automation of security audits helps us quickly meet most of the key administrative procedures as outlined by HIPAA."
    George Zimmerman, Internet Administrator
    St. Peter's Health Care Services

 

 
Penetration Testing Service  :  Security Audit
About us  :  Services  :  Security  :  Pricing  :  Contact us
Copyright © Marvin and Company PC, 2007. Privacy Policy