OCR Reveals Top Audit Interests
HEALTHCARE PRIVACY—U.S.August 16, 2011
The Office for Civil Rights (OCR) has announced the top areas of interest on its HIPAA privacy and security compliance radar, HealthLeaders Media reports. Its top issue is incident detection and response. It will also focus on reviews of log access; secure wireless networks; management of user access and passwords, and theft or loss of mobile devices, among other requirements. The OCR plans to look at 150 organizations by the end of the year. Cliff Baker, chief strategy officer at HITRUST Alliance, says the audits will initially focus on covered entities and not necessarily organizations that have experienced a breach. The audits will be a "learning opportunity for the entire industry," he said.