Benchmark: 164.314 Organizational Requirements


The Security Rule includes the Standard, Business associate contracts or other arrangements. A covered entity is not in compliance with the standard if the it knows of a pattern of an activity or practice of the business associate that constitutes a material breach or violation of the business associate's obligation to safeguard ePHI (under the contract or other arrangement), unless the covered entity takes reasonable steps to cure the breach or end the violation, as applicable. If such steps are unsuccessful, the covered entity is required to terminate the contract or arrangement, if feasible or if termination is not feasible, report the problem to the Secretary (HHS).


Install the mod:

mkdir dashboards
cd dashboards
powerpipe mod init
powerpipe mod install github.com/turbot/steampipe-mod-aws-compliance

Start the Powerpipe server:

steampipe service start
powerpipe server

Open http://localhost:9033 in your browser and select 164.314 Organizational Requirements.

Run this benchmark in your terminal:

powerpipe benchmark run aws_compliance.benchmark.hipaa_final_omnibus_security_rule_2013_164_314

Snapshot and share results via Turbot Pipes:

powerpipe benchmark run aws_compliance.benchmark.hipaa_final_omnibus_security_rule_2013_164_314 --share