Exhibit 1
Security Official Job Responsibilities (4-page PDF file; About PDFs)
Exhibit 1a
Privacy & security official job responsibilities
Exhibit 2
HIPAA security rule standards matrix and risk analysis
Exhibit 3
Sample audit trails policy & procedures
Exhibit 4
Sample event record
Exhibit 5
Sample Policy for User Identification (User ID) and Authentication (2-page PDF file; About PDFs)
Exhibit 6
Sample anti-virus policies and procedures
Exhibit 7
Security incident report
Exhibit 8
Sample backup policy and procedure
Exhibit 9
Sample security incident policies and procedures
Exhibit 10
Sample security incident log
Exhibit 11
Facility maintenance log
Exhibit 12
Sample contingency policy and procedure
Exhibit 13
Contingency plan steps
Exhibit 14
Listing of typical business associates
Exhibit 15
A medical practice guide for the security official to identify business associates that access phi
Exhibit 16
First Amendment to Business Associate Agreement (2-page PDF file; About PDFs)
Exhibit 17
Sample policy and procedures on workstation use
Exhibit 18
Security policy training checklist
Exhibit 19
Training documentation form
Exhibit 20
Workforce confidentiality agreement
Exhibit 21
Sample workforce termination procedures
Exhibit 22
Workforce termination checklist
Exhibit 23
Sample sanction policy
