Is Your Practice Up-to-Date on HIPAA Compliance?

Under the HITECH Act, Phase 2 audits for HIPAA compliance are currently underway, and will continue until June 2015. These audits will include all covered entities, as well as business associates such as software vendors and medical billing companies.

According to HITECH regulations, every practice is required to conduct a risk analysis. Studies,

Read More…

3 Ways to Ensure HIPAA Compliance While Building Your Online Brand

We live in an era of constant communication, and brand awareness demands that health care institutions maintain an active social media presence. At the same time, however, there is increasing emphasis placed on safeguarding personal information, and the regulations governing health data are appropriately restrictive. 

Health care institutions

Read More…

Millennials & Their Data Security Habits

I read this article 'Do Millennials Believe in Data Security?' from Harvard Business Review ( and found it to be a really interesting read. Much has been said on the impatience of Millennials and the way they handle their data securely is no different. In short, when it comes

Read More…

Ability to Repay and Qualified Mortgage Rule

On April 10, 2013, the CFPB published a compliance guide for the Ability to Repay (ATR) and Qualified Mortgage(QM) Rule. Their goal is to provide the comprehensive rule summary in an easy to read plain language and FAQ format. If your institution originates closed-end residential mortgage loans, you may find these resources helpful.

The final

Read More…

RISK: It's Everyone's Business

Recently IBM released its 2010 Global IT Risk Study. According to the study 74% of those surveyed agreed that the greatest benefit of improving IT Risk Management is that it ensures business continuity.

The article goes on to define business continuity as more than a natural disaster preparedness plan. “It is really about building a risk-aware

Read More…

Success Story: Los Alamos National Bank

At A Glance

Organization: Los Alamos National Bank (LANB)

Industry: Banking – LANB provides full-service banking (including deposit accounts, consumer, safe deposit box rentals; commercial and real estate loans; international services including currency exchange and wires; trust and investment services).


  • Comprehensive IT FFIEC/COBIT

Read More…

Webinar – Social Media and Compliance Part I

Thanks to all that were able to attend our webinar last Friday on Social Media and Compliance. It was our highest attended to date. If you are wanting the slides for the presentation, you can download the PDF here Social Media & Compliance . Next month, September 3rd, we will be continuing this topic by showing some examples of policies and

Read More…

Achieving Security Efficiency

Recently the Ponemom Insitute released its’ latest research on “Benchmarking Information Security Efficiency” Their goal was to help organizations determine the “most operationally efficient route to their desired security posture.” I’d hope that their desire would be continuous compliance. The research showed five key areas that affected security

Read More…

Understanding Continuous Compliance

Continuous Compliance means developing a pro-active, enterprise risk assessment and audit program. In the wake of our current economy, security threats, and the customer’s need for privacy, financial institutions must implement continuous compliance programs to be successful.

It enables transparency as organizations have a clear picture of the

Read More…

Success Story: Lubbock National Bank

At A Glance

Organization: Lubbock National Bank (LNB)

Industry: Banking

Solution: Full Risk-Based Technology Controls Review & Risk Assessment


  • Simplified risk and audit assessment process
  • Clear picture of LNB’s compliance and security standards
  • Standardized policies and procedures across locations

“RiskKey was great to use and

Read More…