The Health Information Security Unit exists to ensure the highest level of security and compliance with Health Insurance Portability and Accountability (HIPAA), Family Educational Rights and Privacy Act (FERPA), and Personally Identifiable Information (PII) standards, to ensure the protection of Intellectual Property (IP) and Personal Health Information (PHI). This unit is responsible for establishing and implementing college wide security programs, monitoring and enforcing information security standards to ensure confidentiality, integrity, and availability of information and technical assets across the College of Medicine’s core mission in Education, Research and Healthcare.
This group proactively oversees and leads the on-going security risk assessments for the clinical practice, actively monitors and manages technical risks for the organization, and provides incident response upon occurrence. Security professionals also manage the Vendor Risk Management (VRM) Process in partnership with the CISO office to review and document identified risks of new technologies and solutions within the environment. In concert with the CISO office, security awareness and training programs are aligned with specific emphasis in HIPAA security. Development of university-wide HIPAA security policies are drafted by this unit and presented to the University HIPAA Collaborative Workgroup, with representation from other university clinical entities, for review and adoption at a university level.
KnowBe4 Newsletter – Understanding the Attackers
UCF ISO’s Student InfoSec Brochure