I'm a Managing Consultant who performs HIPAA Compliance and Cybersecurity Audits – AMA about security and how sensitive medical records are handled online!

Hi /r/technology!

​

My name is Blaise Wabo, and I help organizations ensure that their web infrastructure is secure from cybersecurity threats, especially when compliance requirements are codified in law, as is the case in the healthcare industry. Rapidly changing healthcare and cybersecurity threats are both frequently making news headlines. Considering our country’s growing reliance on web-based solutions for day-to-day services like healthcare, and increasing cybersecurity threats from malefactors, sensitive health data must be handled with the utmost care – per standards such as the HIPAA privacy rule. A lot of changes have gone into effect recently, particularly with HITRUST including:

 

*CSF v9.2 released Jan 21, 2019

  *HITRUST Validated Assessment QA changes effective April 1, 2019

  *Interim Assessment changes effective April 1, 2019

​

We're here to answer any of your questions relating to HIPAA and HITRUST compliance, HIPAA hosting requirements, audit procedures, and cybersecurity.

​

HIPAA Assessor, Blaise Wabo's bio:

​

Blaise Wabo is a Senior Manager at A-LIGN focused on performing HIPAA, SOC 1, SOC 2, and HITRUST examinations in various industries including healthcare, SaaS/PaaS/IaaS, payroll, and collections. Blaise holds the following certifications and accreditations: Certified Public Accountant (CPA), Certificate of Cloud Security Knowledge (CCSK), HITRUST Certified CSF Practitioner (HITRUST CCSFP) and Certified Information Systems Auditor (CISA).

​

About Atlantic.Net:

​

Atlantic.Net was formed in 1994 and specializes in providing HIPAA Compliant Hosting, Managed Hosting, Dedicated Hosting, Cloud Hosting, and more. We have both domestic and international data center operations, focused on implementing tailored hosting solutions. Atlantic.Net is a global web hosting provider with over 24 years of experience, specializing in Windows, Linux and FreeBSD server hosting. Atlantic.Net provides developer-friendly cloud hosting with a focus on simplifying the experience for users. Additionally, Atlantic.Net offers fully managed environments and security and compliance focused solutions across all its hosting facilities in San Francisco, New York, London, Toronto, Dallas, and Orlando. With a range of certifications and an SSAE 16 (SOC 1) TYPE II (Formerly SAS 70) audited data centers that the company owns and operates, the company is also known for its reliability, as dictated by its 100 percent uptime service-level agreement (SLA). For more information, please visit www.atlantic.net.

​

About A-LIGN:

​

A-LIGN is one of a limited number of solution providers that can offer a consolidated approach to information technology and information security audits. A-LIGN is a HITRUST CSF Assessor firm, Qualified Security Assessor Company, Accredited ISO 27001 Certification Body, Accredited FedRAMP 3PAO and licensed CPA firm. With the ability to work with small businesses to the largest of enterprises, A-LIGN leverages its industry expertise to guide organizations towards security, compliance and privacy services that will enhance their information security to prevent cyber threats, and reduce risk, turning their security into a competitive edge. For more information, visit www.A-LIGN.com.

​

Please Note: I WILL BEGIN ANSWERING QUESTIONS AT 1PM EST ON MAY 16TH.

​

My Proof: https://twitter.com/BlazeWabo/status/1128710854306869248

Submitted May 15, 2019 at 10:27PM by hipaaexpert http://bit.ly/2VB9dod