Health Insurance Portability and Accountability Act (HIPAA) compliance for employees working remotely depends on a sound IT infrastructure. Raghunath Thummisi, Global Cybersecurity Market Strategist at Radware in Mahwah, NJ, offers these suggestions:
- Ensure all configurations and setup of remote equipment, software, and hardware accessing the organization’s systems are performed by the IT team in a structured way. This includes setting up firewalls, antivirus software, and VPN access.
- Set up all remote employees with correct access and privilege levels based on their roles and responsibilities.
- Ensure employees’ home routers are encrypted and the default passwords are changed.
- Mandate end-to-end encryption and protection of remote devices, home network, and applications, including secure transmission of patient records.
- Enforce strict acceptable usage policies and confidentiality of remote devices.
- Mandate remote employees to prevent unauthorized access at home.
- Periodically audit remote employees to ensure adherence to remote access policies.
- Raghunath Thummisi, Global Cybersecurity Market Strategist, Radware, Mahwah, NJ. Phone: (201) 512-9771.