Hospitals and physicians need to ramp up their security scrutiny of electronic health records systems as a result of recent changes in the Department of Health and Human Services’ certification of health IT products, says privacy attorney David Holtzman.HHS will no longer have its contractors scrutinize most EHR security features, and it’s ending random audits of certification compliance. Those changes mean EHR users must, more than ever, take steps to ensure EHRs truly offer all the security functions required to be certified for participation in federal incentive programs, Holtzman says in an interview with Information Security Media Group.

Source: Click here