One of the most impactful regulations in the United States is the Health Insurance Portability and Accountability Act of 1996, known as HIPAA. The HIPAA Security and Privacy Rules lay out rigorous requirements for the collection, use, and storage of Electronic Protected Health Information (ePHI).

Our latest blog features CyberGRX CISO, Kevin Ford, who discusses some of the essential technical security controls to promote HIPAA compliance and protect ePHI.

Read more about them here:

CyberGRX Community for Third-Party Cyber Risk Management

Welcome to the first online community dedicated to risk professionals fighting on the front lines of TPRM! We know assessments and cyber risk can be a bear, but the best way to secure your ecosystems is by working together. So join other risk professionals in this community to crowd source ideas, share best practices and support each other. A few rules of engagement: Please keep your posts relevant to the forum category, be polite, enjoy yourself, and help us build a great community.

Discussion List