摘要 |
A Compatibility Maturity Model assessment methodology (HIPAA-CMM) for evaluating compliance with the Health Insurance Portability and Accountability Act ("HIPAA"). The model is based on a proven and recognized CMM framework developed initially for measuring the quality and maturity level of an organization's software development processes and that has been extended to Systems Engineering and Systems Security Engineering. Unlike existing CMMs, HIPAA-CMM achieves the granularity and coverage necessary to provide a formal, repeatable, and consistent methodology to assess an organization's HIPAA compliance. This approach identifies areas of strong and marginal compliance, as well as those areas which are not in compliance with HIPAA, and provides a consistent basis for defining remediation means. Inherently, the HIPAA-CMM also serves as a tool for implementing continuous improvement and evaluating the effectiveness of the improvement measures.
|