Main Nav

Hello All,

I’m in the process of reviewing the HIPPA Privacy Rule & Security Rule and I am wondering how other Universities that are designated as covered entities ensure compliance with the following two Administrative Requirements:

1. Training - Does your school offer security & privacy training to all workforce including management?

   a. Yes, mandatory for all employees

   b. Yes, mandatory but ONLY for employees who handle HIPPA data

   c. Yes, mandatory but only for employees who handle sensitive information (one training covers all regulations PII, PCI, HIPAA, PERPA, etc.)

   c. Yes, optional generic computer & data security training for all employees, but it does not specifically emphasize a regulation

   b. No, don’t have a HIPPA training program

2. Privacy and Security Official – has your institution formally appointed or identified who will be operationally responsible for assuring that the covered entity complies with both the Security and Privacy rules?

   a. Yes, a Security Official and Privacy Official has been appointed and it is the same person

   b. Yes, a Security Official and Privacy Official has been appointed and it is NOT the same person

   c. No, no person has been identified.

   d. No.

Your input will be highly appreciated and I will summarize the results and share with the group.

 

Carlos S. Lobato, CISA, CIA

IT Compliance Officer

 

New Mexico State University

Information and Communication Technologies

MSC 3AT PO Box 30001

Las Cruces, NM  88003-8001

 

Phone: 575-646-5902

Fax: 575-646-5278

 

Email: clobato@nmsu.edu

 

Close
Close


Connect: San Antonio
April 22–24
Register Now

Events for all Levels and Interests

Whether you're looking for a conference to attend face-to-face to connect with peers, or for an online event for team professional development, see what's upcoming.

Close

Digital Badges
Member recognition effort
Earn yours >

Career Center


Leadership and Management Programs

EDUCAUSE Institute
Project Management

 

 

Jump Start Your Career Growth

Explore EDUCAUSE professional development opportunities that match your career aspirations and desired level of time investment through our interactive online guide.

 

Close
EDUCAUSE organizes its efforts around three IT Focus Areas

 

 

Join These Programs If Your Focus Is

Close

Get on the Higher Ed IT Map

Employees of EDUCAUSE member institutions and organizations are invited to create individual profiles.
 

 

Close

2015 Strategic Priorities

  • Building the Profession
  • IT as a Game Changer
  • Foundations


Learn More >

Uncommon Thinking for the Common Good™

EDUCAUSE is the foremost community of higher education IT leaders and professionals.