Strategies for complying with the HIPAA security rule.

In response to the HIPAA privacy and security rules, organizations are taking steps to set up and clean up access controls, and explore possible changes to audit controls and termination procedures. They are facing the practical issues of implementing security policies that are compliant, efficient to administer, and not disruptive to users. Organizations are also setting up new users' system access according to role-based schemes and examining the ways they are terminating access for departing employees.