Gary Nelson

Gary Nelson is a Principal at Schellman. Gary currently helps lead Schellman’s HITRUST and DEA EPCS practices and has been a leading expert of both HITRUST for healthcare service organizations and DEA EPCS for providers of electronic prescription and electronic pharmacy applications. Having completed over 500 service audits, Gary is one of the most experienced service auditors in the United States.

  • HIPAA Allows Choice in Password Security, But Use Caution

    HIPAA Allows Choice in Password Security, But Use Caution

    Password security for electronic protected health information (ePHI) is a fundamental part of any HIPAA compliance program, but there is no one right way. HIPAA allows a great deal of...

    Read Article
  • HIPAA Misconceptions Still Plague Healthcare Providers

    HIPAA Misconceptions Still Plague Healthcare Providers

    Even after years of living with HIPAA and its many requirements, healthcare providers still labor under misconceptions that could lead to noncompliance penalties, says Gary Nelson,...

    Read Article
  • SOC 2 But Not SOC 2+HITRUST?

    SOC 2 But Not SOC 2+HITRUST?

    Can my organization successfully complete a SOC 2 but still not successfully complete a SOC 2 + HITRUST?

    Read Article
  • HITRUST Changes on the Horizon

    HITRUST Changes on the Horizon

    A few weeks ago, HITRUST unveiled changes to its HITRUST Certification program that will certainly have an impact on healthcare organizations of all sizes. A few weeks ago, HITRUST unveiled

    Read Article
  • HITRUST Changes on the Horizon

    HITRUST Changes on the Horizon

    A few weeks ago, HITRUST unveiled changes to its HITRUST Certification program that will certainly have an impact on healthcare organizations of all sizes.  The two biggest...

    Read Article
  • loading
    Loading More...