HIPAA Compliance

HIPAA Compliant SIEM

Blumira’s security platform helps organizations easily meet and exceed HIPAA compliance monitoring and security controls.

This provides guidelines on how Blumira helps address the needs of HIPAA Phase 2 07/2018


Section 164.308(a)(1)(ii)(D) Information system activity review (Required). Implement procedures to regularly review records of information system activity, such as audit logs, access reports, and security incident tracking reports.
Section 164.308(a)(5)(ii)(C) Log-in monitoring (Addressable). Procedures for monitoring log-in attempts and reporting discrepancies.
Section 164.312(b) Audit controls. Implement hardware, software, and/or procedural mechanisms that record and examine activity in information systems that contain or use electronic protected health information.
Section 164.316(b)(2)(i) Retain the documentation required by paragraph (b)(1) of this section for 6 years from the date of its creation or the date when it last was in effect, whichever is later.
References: https://www.hhs.gov/hipaa/for-professionals/compliance-enforcement/audit/protocol/index.html