Hospital Insider PHI Theft Case: Lessons to Learn

September 18, 2018 Mayuri Kumar

A case involving alleged insider theft of protected health information from a hospital in New York illustrates why healthcare organizations need to take extra precautions to prevent similar incidents.

Key insider theft prevention steps, some security experts say, include conducting an enterprise-wide risk assessment, adequately vetting staff members who have access to PHI and implementing behavioral analytics to track unusual access to patient information.

David Holtzman’s comments are featured in this article.

Previous Article
New Interim Associate CIO and Chief Information Security Officer announced
New Interim Associate CIO and Chief Information Security Officer announced

Next Article
User Access Monitoring: Convincing Your Governing Body that You Need to do This
User Access Monitoring: Convincing Your Governing Body that You Need to do This

User access monitoring is a requirement under the HIPAA Security Rule. However, the specifics of what must ...