Bringing Box into HIPAA Alignment
Time 04/07/14 08:45AM-10:00AM
Room Governor's Square 11
Netcast sponsored by Cisco
Educational institutions have always struggled with the balance between the desire for open collaboration and the demand to mitigate risk. HIPAA legislated protection of personal health data requires proactive risk management through the entire stack of administrative, technical and physical controls. Many institutions are pushing IT services into the cloud either to leverage the expanding range of storage, collaboration and productivity tools or simply to better manage costs and scale. As our data moves outside our physical control how do we develop trust in those partners, extend our risk management controls, and protect ourselves legally? Is it possible to work in the cloud and still follow the rules and regulations outlined in HIPAA and HITECH? Indiana University (IU) is an early adopter in the Internet2 Net+ Box program with over 50,000 users. IU also has one of the largest medical schools in the country. In order to allow the medical community to leverage the benefits of Box for the full scope of their work IU must be able to assert HIPAA alignment for the service. In this session attendees will learn the HIPAA basics, the necessary steps to become HIPAA-aligned and the unique challenges of doing this with a cloud-based service with Box as an object example.
Primary track Cloud, Trust, Identity and Middleware Applications
Secondary tracks Health Sciences Internet2 NET+ Services Research Partnership Development and Engagement Industry Partnership Development and Engagement Cloud, Trust, Identity and Middleware Applications Research Strategies Cloud Services