EMR Specialists
Home   |   About us   |   Contact us  |   EMR Demo
Search:
June 30, 2009
FISMA—a roadblock for EHRs?
Filed Under (EHR, EMR) by admin

FISMA is becoming a roadblock for electronic health record implementation, Government Health IT magazine reported this week.

The Federal Information and Security Management Act (FISMA), passed by Congress in 2002 to better protect the federal government against cyber attacks, mandates information security standards for all federal agencies. This includes the flow of data between the Centers for Medicare and Medicaid (CMS) and their contractors—over 200 hundred of them, processing billions of Medicare claims. The new worry from CMS, according to Government Health IT, is that healthcare providers sharing EHR files will be required to meet FISMA standards, which include an annual security test and FISMA certification.

A CMS spokesperson is quoted as saying that this would be more than “burdensome” for both CMS and health care providers and organizations.

The conundrum is that information will be moving between the HIPPA world (the private sector) and the FISMA world (the government)—that latter of which is much more secure, from a protocol/standards perspective. Federal agencies are held to a higher standard than the private sector with respect to information security.

For a long time, consumer groups have argued that HIPPA is a weak standard for patient information security. Yet, many worry that if FISMA is applied to the private sector, there will be a compliance crisis that will be costly to remedy. But why shouldn’t the transfer of health information be held to the highest security standards? Advocates of a middle ground argue “yes,” but not quite as stringent as FISMA. They standards should be more of a more of a “HIPPA-plus” or “FISMA-lite,” in the words of Vish Sankaran, a program director for the Federal Health Architecture project to connect health information entities.

In other words, get health care providers better engaged in securing healthcare information but do not stunt the growth of the EHR movement by placing the bar too high.

In the end, the Office of Management and Budget will dictate the debate through their determination of what falls under the FISMA umbrella. In August of 2008, OMB issued some guidance, stating that FISMA applies to groups that “possess or use Federal information—or which operate, use or have access to Federal information systems (whether automated or manual)—on behalf of a Federal agency.” OK, that could include a ton of organizations.

Confusing? You bet. This is government language after, all. Much like statistics, just mold it to your current need.

There is still debate over whether, for example, health information exchanges (HIEs) that “exchange” information but do not “access” federal information systems need to be FISMA compliant. In any event, there is a strong and important need to address information security in the field of healthcare. Will FISMA be the best vehicle for achieving information security with respect to patient information? That remains unresolved, but hopefully, the work to find a middle ground, coaxing the private sector into requiring more robust security standards, will be the outcome.

Above article published on

http://ohmygov.com/blogs/general_news/archive/2009/06/30/fisma-a-roadblock-for-ehrs.aspx

Share your views and comments with OmniMD, a CCHIT & Surescripts® certified Electronic.

Read More   

Post a comment
Name: 
Email: 
URL: 
Comments: 

  • Categories

    • CCHIT (12)
    • Drug (2)
    • EHR (96)
    • Electronic Health Records (18)
    • Electronic Medical Records (72)
    • EMR (119)
    • EMR Stimulus Package (15)
    • EPrescribing (5)
    • Health (30)
    • Health IT (16)
    • Health IT Policy (2)
    • HIMSS (5)
    • Hospital (10)
    • Uncategorized (1)

  • Blogroll

    • Document and Indexing
    • EHR
    • EHR News
    • Electronic Prescription Service
    • EMR
    • EMR Stimulus Package
    • Medical Billing Outsourcing
    • Medical Billing Outsourcing
    • Medical Billing Services
    • Medical Transcription
    • Medical Transcription
    • Offshore Medical Transcription
    • Practice Management Software

  • Subscribe


      Enter your email address:

  • Archives

    • February 2010
    • January 2010
    • December 2009
    • November 2009
    • October 2009
    • September 2009
    • August 2009
    • July 2009
    • June 2009
    • May 2009
    • April 2009
    • March 2009
    • February 2009
    • January 2009

  • Meta

    • Log in
    • Valid XHTML
    • XFN
    • WordPress

  • Tag Cloud

    EMR EHR Electronic Medical Records Electronic Health Records EHRs Health EMRS CCHIT EHR Software EMR Software electronic health record EHR Systems Health 2.0 Electronic Medical Record electronic health information EHR system EMR system EMR Endocrinology Cardiology EMR Electronic Systems EMR Gastroenterology software hospitals Health Care Health IT ARRA Doctor Healthcare Specialty Electronic Medical Record System EMR Pain Management EMR Psychiatry EMR Pulmonology EMR Urology EMR Internal Medicine Specialty EMR Health Information Technology EHR Certification SureScripts Transcription Medical Transcription physician EMR Neurology Software Pediatrics EMR Dermatology EMR EMR Family Practice HIMSS HIPAA EMR adoption Health IT Policy EMR Ophthalmology EMR Orthopedics Urology EMR medical records electronic record doctors EMR systems HHS Web Based EMR "Practice Management Electronic Records E-records Electronic Health Record System CCHIT certified Digital Medical Records health care system PHR E-Health Records Healthcare Information Technology EHR technology healthcare industry healthcare IT EMR vendors Prescriptions economic stimulus Survey PMS EPrescribing E-Prescribe Intelligence Online Health Care Medicine Doctory Drug Dragon Naturally Speaking dns E-Prescribing Health Records Healthcare Information and Management Systems Drug Efficacy 2009 facilitates EHR Money Wisely NAHIT ePHR E-Health Records Medical Economy Hospital Specialty EMR Software. Medical Billing System Medical Billing Software Electronic Medical Billing Medical Billing Services Medical Services Medical billing and coding medical billing specialist medical billing online Medical billing pda Outsourcing Medical billing Obama USA CCHIT Certified EMR Document Management Electronic Medical Record System HER EMR Selection Smart EMR Selection E-Patient Hospital records digital SHC EHR platforms Electronic Health Record Growth Medical industry medical mistakes EMR conversion Economic and Clinical Health Medical Office Efficiency Healthiest EMR veterans AHA EHR functions IT system electronic medical records systems CCHIT certified EHR EMR privacy laws National Health Information Modern Healthcare U.S. hospitals EHR implementations health IT experts CPOE DICOM SNOMED HITSP economic stimulus package EHR program CCHIT certification EHR Use IT vendors EHR Summit EHR technologies economic stimulus bill Add new tag health IT industry Nationwide Health Information Health Data Management electronic health record systems HITECH CCHIT Certification programs EHR certifications Emergency Department Preliminary ARRA Certified EHR Adoption EHR vendor ARRA 2011 Certification CMS health care professionals NHIN Department of Health Health IT Standards Committee AHRQ conference Health Professional Education sciences organizations health IT stimulus funds BMJ stimulus package HIPAA compliance HIT heathcare EMR stimulus program EMR vendor EMR industry IT company Purchasing EMR Costs adoption Legal Issues EMR Model software solutions Implementing errors risks ONC
Copyright © EMR Specialists. All rights reserved.
EMR | Solenoid Valve | Tapioca Flour | Offshore Software Outsourcing | Sight Glass
Free Porn porn Phone Sex