Information Technology and the College of Health are working with CynergisTek, a third party cybersecurity and privacy support services firm, to help implement security and privacy best practices. This assessment is designed to provide Ball State with reporting that includes practical and actionable recommendations to improve our overall security posture in relations to cybersecurity and HIPAA rules and regulations. Some of the targeted areas for review include the following.
- Risk Assessment
- Internal and External Security
- Network Architecture
- Wireless LAN Security
- Information Security Program
- Risk Analysis
- Privacy Program
- Documentation Review
- Interviews
- Departmental Audits and Walkthroughs
The initial meetings have been conducted on the targeted areas. CynergisTek plans to conduct interviews with individuals and teams within IT and the College of Health after the first of the year.
Upon completion of interviews, workshops will be conducted for the teams to review the findings and recommendations in depth. Finally, the OCR (Office of Civil Rights) Mock Audit will be conducted.
For questions, contact Blair Mattern, Director of Interdisciplinary Clinical Operations and BSU HIPAA Liaison via email bsmattern@bsu.edu or by phone at 765-285-5354 or Tobey Coffman, HIPAA Security Office via email tcoffman@bsu.edu or by phone at 765-285-4174.