Skip to content
Search
Get A Demo
Sign Up Free
    Get A Demo
    Sign Up Free
      How Blumira Helps With

      HIPAA Compliance

      Blumira’s cloud security platform is a HIPAA-compliant SIEM that helps organizations easily meet and exceed HIPAA compliance monitoring and security controls. HIPAA (Health Insurance Portability and Accountability Act of 1996) is a federal law that protects the confidentiality of sensitive patient health information.

      Try XDR free for 30 days

      Blumira Supports HIPAA Compliance

      The following guidelines illustrate how Blumira helps address the needs of HIPAA Phase 2:

      • Section 164.308(a)(1)(ii)(D)

        Section 164.308(a)(1)(ii)(D) 

        Information system activity review (required). Implement procedures to regularly review records of information system activity, such as audit logs, access reports, and security incident tracking reports.

      • Section 164.308(a)(5)(ii)(C)

        Section 164.308(a)(5)(ii)(C) 

        Log-in monitoring (addressable). Procedures for monitoring log-in attempts and reporting discrepancies.

      • Section 164.312(b)

        Section 164.312(b) 

        Audit controls. Implement hardware, software, and/or procedural mechanisms that record and examine activity in information systems that contain or use electronic protected health information.

      • Section 164.316(b)(2)(i)

        Section 164.316(b)(2)(i)

        Retain the documentation required by paragraph (b)(1) of this section for 6 years from the date of its creation or the date when it last was in effect, whichever is later.

      • References

        References

        https://www.hhs.gov/hipaa/for-professionals/compliance-enforcement/audit/protocol/index.html

      Section 164.308(a)(1)(ii)(D) 

      Information system activity review (required). Implement procedures to regularly review records of information system activity, such as audit logs, access reports, and security incident tracking reports.

      Section 164.308(a)(5)(ii)(C) 

      Log-in monitoring (addressable). Procedures for monitoring log-in attempts and reporting discrepancies.

      Section 164.312(b) 

      Audit controls. Implement hardware, software, and/or procedural mechanisms that record and examine activity in information systems that contain or use electronic protected health information.

      Section 164.316(b)(2)(i)

      Retain the documentation required by paragraph (b)(1) of this section for 6 years from the date of its creation or the date when it last was in effect, whichever is later.

      References

      https://www.hhs.gov/hipaa/for-professionals/compliance-enforcement/audit/protocol/index.html

      Get Started for Free

      Experience the Blumira Free SIEM, with automated detection and response and compliance reports for 3 cloud connectors, forever.

      Sign Up