This is pretty interesting. ./mk Begin forwarded message: > From: RL 'Bob' Morgan <[log in to unmask]> > Date: December 14, 2007 3:47:55 PM GMT-05:00 > To: [log in to unmask] > Subject: HIPAA: not just a (good?) idea any more > Reply-To: Identity Management Constituent Group Discussion list <[log in to unmask] > > > > A friend in the medical security biz tells me that the field is > abuzz about: > > http://www.computerworld.com/action/article.do?command=printArticleBasic&art > icleId=9025253 > > HIPAA audit: The 42 questions HHS might ask > > June 19, 2007 (Computerworld) In March, Atlanta's Piedmont Hospital > became the first institution in the country to be audited for > compliance > with the security rules of the Health Insurance Portability and > Accountability Act (HIPAA). > > The audit was conducted by the office of the inspector general at the > U.S. Department of Health and Human Service (HHS) and is being seen by > some in the health care industry as a precursor of similar audits to > come > at other institutions. > > The article goes on to list the 42 questions, many of which will > look familiar to those of us thinking about Identity Assurance (aka > Level of Assurance) and audit. > > Good thing our friends at TMC have all this covered ... 8^) > > - RL "Bob" > -- Matt Kolb <[log in to unmask]> Academic Computing & Network Services Michigan State University