Currently, questions of health information security and medical privacy are of utmost importance in the United States. Hardly a day goes by that we do not see a featured article or publication about some aspect of medical privacy, or a story about a security breach.
HIMSS has created a Privacy and Security Steering Committee to guide implementation of strategic initiatives that promote the privacy and security of healthcare information and management systems. This Committee has set the following goal: "By 2014, all entities who use, send, or store health information meet requirements for confidentiality, integrity, availability and accountability based on sound risk management practices, using recognized standards and protocols."
In support of this goal, HIMSS has launched several work groups that are actively involved with industry changing activities to achieve this goal.
IT/Application Security NEW
The HIMSS IT Systems Security Work Group has developed the Application Security Questionnaire (ASQ), a self-assessment tool for vendors to complete that will allow healthcare provider organizations or other product purchasers to assess the core security controls inherent within an application or system that will process or store ePHI.
Please send us your feedback and comments on the ASQ Form.
