Administrative Safeguards are administrative functions that should be implemented to meet the security requirements. These include:


  • Assigning or delegating security responsibilities to an individual, which is also known as a Chief Security Officer;
  • Training all workforce members on security principles and reviewing organizational policies and procedures at the start of new employment;
  • Review HIPAA on an annual basis. This review must include obtaining an individual attestation from each individual employee and documentation of your annual training with a participation signature log to be kept within your HIPAA manual;
  • Next, you must terminate workforce members’ access to informational systems. Reporting and responding to security risks and incidents within a timely manner.