Regulatory Compliance, Governance and Security:

HIPAA


September 25, 2009  1:49 PM

HIPAA Compliance for Data Centers | The How and Why



Posted by: Charles Denyer
charles denyer, co-location, data centers, health insurance portability and accountability act, HIPAA, managed services, Payment Card Industry Data Security Standard, PCI DSS, SAS 70

HIPAA compliance for data centers is fast becoming a hot topic in regulatory compliance. It first started with Statement on Auditing Standards No. 70 (SAS 70), it is now moving onto the Payment Card Industry Data...

August 23, 2009  8:47 PM

Will HIPAA compliance ever have any Teeth like SAS 70 and PCI DSS?



Posted by: Charles Denyer
162, 45 CFR Parts 160, and 164, charles denyer, health insurance portability and accountability act, Health Insurance Reform: Security Standards, HIPAA, payment card industry data security standards, PCI, PCI DSS, SAS 70, The Department of Health and Human Services, type II

HIPAA, The Health Insurance Portability and Accountability Act, has been with us for years now. Upon reading through the vast and cumbersome documentation, one quickly realizes that HIPAA has many moving parts, enough to make you...


August 23, 2009  4:39 PM

GLBA, HIPAA, SAS 70, PCI DSS | what is next for Compliance?



Posted by: Charles Denyer
charles denyer, GLBA, HIPAA, payment card industry data security standards, PCI DSS, SAS 70, sas70, The Minnesota Plastic Card Security Act

The trend of late has been Payment Card Industry (PCI) Data Security Standards (DSS) compliance, along with a continued emphasis on the well known SAS 70 auditing standard. And occasionally, calls for GLBA and HIPAA compliance come calling also. As an...


January 29, 2009  1:09 PM

California Security Breach Information Act (SB-1386) | What You Need to Know.



Posted by: Charles Denyer
California SB-1386, California Security Breach Information Act (SB-1386), GLBA, Gramm Leach Bliley, HIPAA, MN PCI DSS, MN plastic card security act, SAS 70

In short, the California Security Breach Information Act (SB-1386) is a California state law requiring organizations that maintain personal information about individuals to inform those...


December 31, 2008  11:19 PM

SAS 70 and Regulatory Audits | What is the Impact to our Economy?



Posted by: Charles Denyer
glbay, HIPAA, impacts of audits to economy, payment card industry, PCI, Sarbanes-Oxley, SAS 70, sas70, section 404, SOX

The impacts, in my opinion, are the following. Interestingly, the last decade has seen somewhat of a shift in auditing. That's not to say there has been a decrease in this specialized service, quite to the contrary. The shift has occurred as financial statement auditing has begun to see somewhat...


November 23, 2008  7:46 PM

SAS 70 Type II Audit Reports | Why SAS 70 is Here to Stay



Posted by: Charles Denyer
GLBA, HIPAA, regulatory compliance, Sarbanes-Oxley, SAS 70, sas 70 audit report, sas 70 control objectives, sas 70 type ii, sas70, section 404 sox, SOX, What is SAS 70?

We live in a world of heightened regulatory compliance and corporate governance. From the passage of the 2002 Sarbanes-Oxley Act to numerous other pieces of legislation (HIPAA, GLBA, just to name a few), "comply, comply, comply" is the new mantra being pushed throughout organizations and at all...


August 26, 2008  11:10 AM

SAS 70 Audits and Third Party Administrators (TPA)



Posted by: Charles Denyer
HIPAA, SAS 70, SAS 70 download, sas70, Third Party Administrator, TPA

As a SAS 70 auditor for many years, i've seen a huge increase in the number of third party administrators (TPA) that are required to go through a SAS 70 Type I or SAS 70 Type II audit. Man of these TPA organizations are considered small, with limited budgets, thus they voice a great deal of...


August 3, 2008  2:49 PM

SAS70 & PCI Compliance | Creating Audit Efficiencies



Posted by: Charles Denyer
Auditing, audits, Compliance, GLBA, HIPAA, payment card industry, PCI, qsa, regulatory compliance, Sarbanes-Oxley, SAS 70, sas70, sas70 sample reports, Security

SAS70 audits have grown tremendously in the past five years, largely due in part to the explosive growth of federal regulatory compliance laws and legislation. Interestingly also, Payment Card Industry (PCI) compliance has also received much...


July 21, 2008  6:23 PM

SAS70 Audit Guide | Section 5.0 | SAS70 Roadmap for Compliance



Posted by: Charles Denyer
Auditing, audits, Compliance, GLBA, HIPAA, regulatory compliance, Sarbanes-Oxley, SAS 70, SAS 70 checklist, SAS 70 download, SAS 70 overview presentation, SAS 70 readiness questionnaire, Security, SOX, What is SAS 70?

SAS70 Type I & Type II audits can be daunting indeed to many service organizations, but they shouldn't be. The more you learn about what SAS70 is, the better prepared you will be for going through a SAS70 audit. Let's start with...


July 18, 2008  1:55 AM

SAS70 Audit Guide | Section 4.0 | SAS70 Sample Reports



Posted by: Charles Denyer
Auditing, audits, Compliance, GLBA, HIPAA, SAS 70, SAS 70 checklist, SAS 70 download, SAS 70 overview presentation, SAS 70 readiness questionnaire, Security, SOX, What is SAS 70?

You can obtain SAS70 sample reports if you are interested in learning more about the SAS70 auditing standard. Many service organizations have to go through a SAS70 audit and would like to learn more about the auditing...


Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: