An individual who was previously employed at the Information Security Manager at a financial institution provides insight into four critical mistakes Healthcare Instutitions make when dealing with security. These include:

Presuming that HIPAA Compliance is Security

Basing Security on Systems Rather Than on Critical Information

Awareness Programs are Ineffective

Failure to Control Access to Information