The IT staffs of healthcare organizations struggle daily with the challenge of achieving compliance with the Health Insurance Portability and Accountability Act (HIPAA) and their own internal policies, protecting sensitive data, and ensuring appropriate use of the network.
HIPAA took effect in April 2003, and has had a huge impact on healthcare organizations. Created to strengthen privacy protection for personal medical information, HIPAA governs the storage, access, and transmission of patient health data. In addition to HIPAA, healthcare organizations have evolved their own internal guidelines and policies for protecting sensitive information and regulating the appropriate use of the network, the web, and email by employees.
How can IT professionals at healthcare organizations ensure compliance with external and internal policies and protect valuable patient health information? This document identifies a number of areas of concern and describes how McAfee Network Data Loss Prevention (DLP) helps IT professionals discover sensitive data at rest, monitor traffic in real time, and capture events for after-the-fact investigation.