Survey pinpoints many shortcomings in healthcare organization’s information security efforts. Twenty-six percent of organizations have yet to conduct a risk assessment, as mandated by HIPAA. Forty-three percent grade their ability to counter information security threats as poor, failing or in need of improvement. Less than half have a defined information security budget, according to the survey. The ranking of regulatory compliance as the No. 1 priority for the coming fiscal year could signal a shift in attitudes about security, an expert says.”]
Source: https://www.careersinfosecurity.com/new-survey-compliance-job-1-in-2012-a-4198