2017-01-05T20:50:00Z

HIPAA Compliance with JIRA

it_user581931 - PeerSpot reviewer
  • 8
  • 151
PeerSpot user
8

8 Answers

Shibu Babuchandran - PeerSpot reviewer
Real User
ExpertModerator
2021-10-25T02:31:32Z
Oct 25, 2021

Hi, 


There are no ITSM  tools that are HIPAA compliant as per my knowledge. The tools need to be tuned and configured to be compliant with Standards for Privacy of Individually Identifiable Health Information and all the security policy as per HIPAA. 


The controls that HIPAA requires in case of physician order entry (CPOE) systems, electronic health records (EHR), and radiology, pharmacy, and laboratory systems need to have all the security controls in place. Any ITSM tools with all the controls that adhere to the above point will be easy to use and be compliant with.

Search for a product comparison in Help Desk Software
it_user241338 - PeerSpot reviewer
Vendor
2017-01-20T14:06:16Z
Jan 20, 2017

Yes, our company (Isos Technology) has helped a number of organizations implement JIRA for the purposes of tracking clinical trials, mobile healthcare applications, and other PHI related implementations. It's not compliant out-of-the-box, but HIPAA compliance can be implemented in JIRA in an elegant way. If you have more questions or would like to discuss details, please reach out to us... www.isostech.com.

SA
Real User
2017-01-11T05:51:23Z
Jan 11, 2017

Kindly review the product ManageEngine. It covers complete IT Helpdesk functionality with Add-on for GRC, HIPAA requirements;

https://www.manageengine.com/products/eventlog/eventlog-compliance.html
https://www.manageengine.com/products/eventlog/hipaa-compliance-reports.html

it_user385263 - PeerSpot reviewer
Consultant
2017-01-10T15:27:53Z
Jan 10, 2017

The app is not HIPPA compliant out-of-box, but you could get it there by hosting a server (not the cloud product) in a secure environment on the other end of a VPN. It would styme some of the interoperability (like the mobile app), but could work.

it_user581931 - PeerSpot reviewer
Vendor
2017-01-10T15:22:52Z
Jan 10, 2017

We plan on using it with external physician offices or labs logging issues with patient orders and/or results. The company should also be willing to sign our BAA or have a BAA that we would sign. In terms of specs, we need the data fully encrypted from at rest to in transit.

it_user273036 - PeerSpot reviewer
Consultant
2017-01-10T14:34:10Z
Jan 10, 2017

One of the best helpdesk software packages on the market currently, fully compliant with HIPAA is ServiceNow. They have a light and a full version. Although they work only in the cloud, there environment is able to be completely encrypted (or parts of it). Many banks and financial institutes are making use of ServiceNow. Also Agfa-Healthcare, a huge worldwide company with many hospitals as customers, is making use of ServiceNow.

Have a look at www.servicenow.com for more info about this tool.

Learn what your peers think about JIRA Service Management. Get advice and tips from experienced pros sharing their opinions. Updated: March 2024.
765,234 professionals have used our research since 2012.
it_user529914 - PeerSpot reviewer
Real User
2017-01-10T14:04:34Z
Jan 10, 2017

From my investigations it appears that JIRA Service Desk is NOT HIPAA compliant.

it_user385263 - PeerSpot reviewer
Consultant
2017-01-10T13:19:11Z
Jan 10, 2017

What aspects of the IS HIPAA spec are you worried about JIRA violating? Are you intending to use it as a patient-facing solution, or internal for developers?

JIRA Service Management is Atlassian’s IT service management (ITSM) solution. It unlocks all teams at high velocity by: 1. Accelerating the flow of work between IT teams, development teams, and business teams 2. Empowering teams to deliver their service more quickly 3. Bringing visibility to their work Built on JIRA, JIRA Service Management enables best practices across request, incident, problem, change, knowledge, asset, and configuration management so that teams can streamline...
Download JIRA Service Management ReportRead more

Related Q&As