Administrative Safeguards are administrative functions that should be implemented to meet the security requirements. These include:
- Assigning or delegating security responsibilities to an individual, which is also known as a Chief Security Officer;
- Training all workforce members on security principles and reviewing organizational policies and procedures at the start of new employment;
- Review HIPAA on an annual basis. This review must include obtaining an individual attestation from each individual employee and documentation of your annual training with a participation signature log to be kept within your HIPAA manual;
- Next, you must terminate workforce members’ access to informational systems. Reporting and responding to security risks and incidents within a timely manner.