Frequently Asked Questions : Security

Who is responsible for information security at the University of Miami Miller School of Medicine?

Information Security is the responsibility of all employees of the University.

At the network level, the Department of Medical Information Technology is responsible for deploying technical safeguards such as perimeter firewalls, intrusion prevention/detection systems, and antivirus scanners.

At the individual application level, data stewards (system owners) are responsible for implementing policies, procedures, technical, and operational safeguards to ensure adequate protection of their systems and data, including disaster recovery/business continuity solutions.

With respect to the HIPAA regulations, the Office of HIPAA Privacy and Security (OHPS) is responsible for maintaining over-arching administrative, technical, and physical policies to safeguard protected health information. OHPS develops and disseminates material to educate our workforce on their responsibilities to comply with the HIPAA Privacy and Security Standards.