[BESAdmin-Announcements] BigFix Compliance: New HIPAA Checklist for Windows Workstation, published 2025-03-18

Announcements for BES Administrators besadmin-announcements at bigmail.bigfix.com
Wed Mar 26 11:39:00 PDT 2025 

*Product:*
BigFix Compliance

*Title:*
New HIPAA Checklist for Windows Workstation

*Security Benchmark:*
HIPAA Checklist for Windows Workstation

*Published Sites:*
HIPAA Checklist for Windows Workstation, site version 1
(The site version is provided for air-gap customers.)

*Overview:*

The *BigFix Compliance team* is excited to introduce the *NEW HIPAA
Checklist for Windows Workstation*, which is designed to help organizations
meet the security and compliance requirements outlined in the *U.S. Health
Insurance Portability and Accountability Act (HIPAA).*

*Why is this important?*

The HIPAA compliance is mandatory for organizations that are handling
Protected Health Information (PHI), including hospitals, healthcare
providers, insurers, and associated businesses. A single security
misconfiguration on a workstation can lead to data breaches, regulatory
penalties, and operational risks. Ensuring that *Windows 10* and *Windows
11* endpoints adhere to HIPAA security guidelines is critical for
protecting patient data and maintaining regulatory compliance.

*What does this Checklist include?*

The New* HIPAA Checklist for Workstation* encompasses a total of *486
checks*, aligned with* 10 different HIPAA controls*. Remarkably,* 99% of
these checks incorporate remediation strategies*, ensuring comprehensive
compliance measures.

This checklist addresses essential HIPAA security mandates, enabling
organizations to evaluate endpoints according to the following controls:

   - Protection from malicious software
   - Password Management
   - Device and media controls
   - Access Control
   - Integrity
   - Automatic logoff
   - Audit Controls
   - Mechanism to authenticate electronic protected health information
   - Transmission Security
   - Encryption

The Checklist includes both analysis and remediation checks. Some of the
checks allow you to use the parameterized setting to enable customization
for compliance evaluation.

*Note:* *Parameterization and remediation actions require the creation of a
custom site.*

*Actions to take:*

   - Use the *License Overview* dashboard from the *BES Support* site *to
   enable and gather* the site.

*Note:* *You must be entitled to the new content and are using BigFix
version 10 or later*.

   - Create a custom site for the HIPAA Checklist for Windows Workstation
   site using *Create Custom Checklist* under *SCM Reporting* in Wizards.

*More information:*
To know more about the BigFix Compliance SCM checklists, please see the
following resources:

   - BigFix Forum
   <https://forum.bigfix.com/c/release-announcements/compliance>
   - BigFix Compliance SCM Checklists
   <https://bigfix-wiki.hcltechsw.com/wikis/home?lang=enus#!/wiki/BigFix%20Wiki/page/SCM%20Checklists>

We hope you find this latest release of SCM content useful and effective.
Thank you!

*– The BigFix Compliance team*
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://bigmail.bigfix.com/pipermail/besadmin-announcements/attachments/20250326/10d78ad4/attachment.html>

More information about the Besadmin-announcements mailing list