HIPAA Compliance

HIPAA Compliant SIEM

Blumira’s cloud security platform helps organizations easily meet and exceed HIPAA compliance monitoring and security controls. HIPAA (Health Insurance Portability and Accountability Act of 1996) is a federal law that protects sensitive patient health information.

This provides guidelines on how Blumira helps address the needs of HIPAA Phase 2:


Section 164.308(a)(1)(ii)(D) Information system activity review (Required). Implement procedures to regularly review records of information system activity, such as audit logs, access reports, and security incident tracking reports.
Section 164.308(a)(5)(ii)(C) Log-in monitoring (Addressable). Procedures for monitoring log-in attempts and reporting discrepancies.
Section 164.312(b) Audit controls. Implement hardware, software, and/or procedural mechanisms that record and examine activity in information systems that contain or use electronic protected health information.
Section 164.316(b)(2)(i) Retain the documentation required by paragraph (b)(1) of this section for 6 years from the date of its creation or the date when it last was in effect, whichever is later.
References: https://www.hhs.gov/hipaa/for-professionals/compliance-enforcement/audit/protocol/index.html


Learn more about Blumira provides advanced detection and response security for healthcare organizations.