The idea is to make effective, high quality, on-line security and privacy training solutions available for every organization…plus, it is just smart business! -Bob Chaput, Founder & CEO of Clearwater Compliance
Nashville, TN (PRWEB) October 01, 2012
Clearwater Compliance, a leading supplier of HIPAA-HITECH compliance software, solutions, education services and other professional services, and SCIPP International, an organization that provides ANSI-accredited security awareness training and certification programs for organizations worldwide, today announced the launch of the Clearwater End User Security Awareness and HIPAA Security/Privacy Training Portal.
“A solid security awareness and HIPAA Security and Privacy training program like the one we are now able to offer our clients can help organizations’ workforce members become assets and even ‘privacy & security sentinels’”, said Bob Chaput, CEO and Founder of Clearwater. “Provisions in both the HIPAA Security and Privacy Rules mandate that covered organizations must have viable security awareness programs and must provide such periodic training to all workforce members. Yet in our work with our clients, we find that too few organizations are really doing it. So, we relied on SCIPP’s leadership in this area to enable us to provide a robust, but cost-effective solution.”
Over the past several years, Covered Entities, Business Associates and their Agents and Subcontractors have invested huge sums of money on hardware and software security technologies to meet explicit HIPAA security requirements. However, experts, like Clearwater and SCIPP, have found that too few organizations have taken the next step by providing security awareness education and HIPAA Security and Privacy training to their general workforce/end-user populace.
Evidence, demonstrated by some of the recent reported data privacy/security incidents, points to the fact that it is those very users who have daily access and control of the information who are usually the least aware of sound security practices. As a result, workforce members who handle Protected Health Information (PHI) or electronic PHI (ePHI) unintentionally may become liabilities to an organization.
“Technology for the most part doesn’t fail,” says Dow Williamson, CISSP, CSSLP and executive director of SCIPP. “It’s the human being that causes the majority of the problems,” he says. “SCIPP’s stated mission is...’We are motivated by the conviction of addressing security awareness problems where they are most prevalent – at the human level.’ So we are pleased to have the opportunity to extend our reach to Clearwater’s customer base.”
Clearwater’s custom portal is available on an annual subscription basis based on the number of total workforce members an organization might have. Subscriptions can be sold in very small quantities for the small organizations. And, if a large organization prefers to have a private-label portal, Clearwater can also accommodate that need.
“The idea is to make effective, high quality, on-line security and privacy training solutions available for every organization, regardless of size, as all organizations that create, receive, maintain or transmit PHI or ePHI must comply with HIPAA training requirements. Plus…it is just smart business!” continued Mr. Chaput.
About Clearwater Compliance: http://clearwatercompliance.com
Clearwater Compliance helps Covered Entities, Business Associates and their Subcontractors assess their HIPAA-HITECH compliance programs, identify gaps and prioritize remediation efforts to ensure the greatest return on capital and resource investments. It delivers that return on compliance investment through education, tools and software, risk management solutions and professional services and consulting. Since 2003, Clearwater Compliance has delivered thought, methodology, software and service leadership to the healthcare industry. As an example, Clearwater Compliance is the Co-Sponsor of the American National Standards Institute Publication of the Report on “The Financial Impact of Breached Protected Health Information: A Business Case for Enhanced PHI Security”. For more information, visit: http://ANSI.org/PHI.
About SCIPP International: http://www.scippinternational.org/
SCIPP International™ is a “global non-profit organization dedicated to solving information security problems where they need to be solved - at the human level. Based in Washington, DC, with global offices in London, and Hong Kong, SCIPP delivers information security awareness training and certification programs for enterprises throughout the world with a focus on increasing understanding and instilling positive behavioral changes as they relate to protecting your important information assets through the use of the world's most up-to-date, internationally-recognized, effective, and efficient security awareness capabilities.