Security and Compliance
Health Data Compass (HDC) 's cybersecurity plan is based on NIST 800-171 (53). The following domains are covered within NIST 800-171. HIPAA Security rule is mapped to NIST. Please email healthdatacompass@ucdenver.edu for additional information, as needed.
Access Control
Awareness and Training
Audit and Accountability
Configuration Management
Identification and Authentication
Incident Response
Maintenance
Media Protection
Personnel Security
Physical Protection
Risk Assessment
Security Assessment
System and Communications Protection
System and Information Integrity