Quick Response Checklist to Cyber Attacks for HIPAA Covered Entit

Trending News

FTC Approves Non-Compete Ban

Final Rule Raises Salary Threshold to $58,656 for Employee Overtime Exemptions

EEOC Final Rule Implementing the Pregnant Workers Fairness Act

Trending in Telehealth: April 9 – April 15, 2024

Healthcare Preview for the Week of: April 22, 2024 [Podcast]

Pregnant Workers Fairness Act Final Regulations Released

It’s the Final Countdown – The Final PWFA Regs Are Here

Corporate Transparency Act – Continued Developments

Healthcare Preview for the Week of: April 15, 2024 [Podcast]

SCOTUS Declines to Review New York City’s Rent Stabilization Law

Aarthi Krishnamurthy

Email

314.342.4126

Bio and Articles

Quick Response Checklist to Cyber Attacks for HIPAA Covered Entities and Business Associates

by: Aarthi Krishnamurthy of Armstrong Teasdale - For Your Benefit

Monday, June 19, 2017

Print Mail Download

i

The U.S. Department of Health & Human Services (“HHS”) Office for Civil Rights (“OCR”) recently issued a Quick-Response Checklist, explaining the steps for a HIPAA-covered entity or its business associate to take in response to a cyber-related security incident. The Checklist includes:

Executing a response, mitigation procedures and contingency plans;
Reporting the incident to the appropriate law enforcement agencies and information-sharing and analysis organizations (“ISAO”); and
Reporting any breach to the OCR and affected individuals.

The Quick-Response Checklist reminds covered entities and business associates that the OCR considers all mitigation efforts during a breach investigation. Although the response to a cyber-related security incident will depend on the event at hand, all covered entities and business associates should develop a cyber-security response team and plan to immediately address potential security incidents.

Current Legal Analysis

Goodbye “Five-Part Test”—DOL Finalizes New Investment Advice Fiduciary Rules

by: Adam W Scoll , Jennifer Rigterink

Safety Perspectives From Region 6: Programs and Program Enforcements [Podcast]

by: Frank D. Davis , John Surma

FTC Passes Final Rule Banning Worker Non-Compete Agreements

by: Kendall Millard , Christopher Rubey

Recent N.D. Ill. Ruling Upholds Common Interest Doctrine Over Communications Between Biometric Technology Vendors and Customers

by: Julia Y. Trankiem , Torsten M. Kracht

New York’s New Alcohol Beverage Control Law Amendments Affect State Liquor License Applicants

by: Jonathan L. Bing

More from Armstrong Teasdale

HSA Family Contribution Limit is Restored to $6,900 for 2018

by: Armstrong Teasdale LLP

Trio of Cases Will Significantly Impact Post Grant Proceedings

by: Richard L. Brophy , Zachary C. Howenstine

Employer-Provided Tax Preparation Services Are Includible In Employees’ Gross Income

by: Armstrong Teasdale LLP

Ball v. Allied Physicians Group, LLC -- instructive case re submission of future medical damages

by: Laura A. Bentele

Payne v. Fiesta Corp. -- opinion highlighting the critical importance of an offer of proof in case involving 'spaceball human gyroscope ride'

by: Laura A. Bentele

Retirement Plan Provisions in the Bipartisan Budget Act of 2018

by: Armstrong Teasdale LLP

City of Kansas City v. Cosic -- courts may not take judicial notice of a city ordinance

by: Laura A. Bentele

Avoiding Erroneous Outcomes: Lessons Learned from John Doe v. Miami University

by: Salama Gallimore , Bill Ojile

Mum's the Word on Olympics Content to Avoid Infringement

by: Matthew J. Gearin , Jennifer E. Hoekel

Cadillac Tax Delay – Cruising Until 2022

by: Sarah Roe Sise

Upcoming Legal Education Events

Jun

4

2024

FinTech and Securities Trading Platforms

May

17

2024

Upon Further Review: A Look Back at the Last Year in the Third, Fourth, and D.C. Circuits

May

15

2024

Capital Connect: Finance & Funding in Life Sciences

May

14

2024

Harmonizing TSCA Consent Orders with OSHA HCS 2012

Print