Health Insurance Portability and Accountability Act (HIPAA) Solution

Implementation: § 164.308(a)(3)(ii)(B), § 164.308(a)(3)(ii)(C)

HIPAA Standard	Check Point Solution
Administrative Safeguards HIPAA Security Rule 164.308
§ 164.308(a)(3)(ii)(B) Workforce clearance procedure (addressable) Implement procedures to determine that access by staff to EPHI is appropriate. § 164.308(a)(3)(ii)(C) Termination procedures (addressable) Implement procedures for terminating access to EPHI when employees terminate employment.	Check Point management tools allow administrators to create policies, including the mapping and assignment of groups (of users and endpoints) to resources. All Check Point products can log and report user access across Check Point gateways as well as log and report administrator changes on Check Point systems. Organizations can view this data in SmartViewTracker and in reports from Eventia Reporter. Authentication is an essential part of all Check Point solutions, including Check Point VPN solutions, as well as user authentication for VPN-1. VPN-1 supports multiple databases for authentication, including an internal database, Microsoft Active Directory, or OPSEC-certified LDAP and RADIUS databases. Check Point VARs, SIs, and business partners can provide consulting services to help an organization define an ID program that can assign users with unique IDs for use with Check Point solutions.

HIPAA Standard

Check Point Solution

Administrative Safeguards HIPAA Security Rule 164.308

§ 164.308(a)(3)(ii)(B) Workforce clearance procedure (addressable)

Implement procedures to determine that access by staff to EPHI is appropriate.

§ 164.308(a)(3)(ii)(C) Termination procedures (addressable)

Implement procedures for terminating access to EPHI when employees terminate employment.

Check Point management tools allow administrators to create policies, including the mapping and assignment of groups (of users and endpoints) to resources. All Check Point products can log and report user access across Check Point gateways as well as log and report administrator changes on Check Point systems. Organizations can view this data in SmartViewTracker and in reports from Eventia Reporter.

Authentication is an essential part of all Check Point solutions, including Check Point VPN solutions, as well as user authentication for VPN-1. VPN-1 supports multiple databases for authentication, including an internal database, Microsoft Active Directory, or OPSEC-certified LDAP and RADIUS databases.

Check Point VARs, SIs, and business partners can provide consulting services to help an organization define an ID program that can assign users with unique IDs for use with Check Point solutions.

Go to Check Point Product Info:

Return to Implementation