Free Tool: 45 CFR 164.308: Administrative Safeguards


Administrative requirements for covered entities and business associates









Action1 Customers

This part of HIPAA is described in section 164.308 of CFR 45 and it's a part of the HIPAA Security Rule documented by HHS. Action1 helps to automate the assessment of your endpoints to make sure that these required administrative safeguards are in place and thus prove your compliance with HIPAA.

164.308 (a)(1)(ii)(D) Security Management: Information System Activity Review
    Required: Regular reviews of audit logs and other tracking information
164.308 (a)(4)(ii)(B) Information Access Management: Access Authorization
    Addressable: Verifying that access granting policies and procedures are in place
164.308 (a)(5)(ii)(C) Security Awareness and Training: Log-in Monitoring
    Addressable: Procedures for monitoring log-in attempts and reporting discrepancies
164.308 (a)(4)(ii)(C): Information Access Management: Access Establishment and Modification
    Addressable: Granting and changing access to workstation and other components
164.308 (a)(1)(ii)(A) Security Management: Risk Analysis
    Required: Assessment of risks and vulnerabilities of ePHI
164.308 (a)(5)(ii)(D) Security Awareness and Training: Password Management
    Addressable: Procedures for creating, changing, and safeguarding passwords
164.308 (a)(5)(ii)(B) Security Awareness and Training: Protection from Malicious Software
    Addressable: Procedures for guarding against, detecting, and reporting malicious software
164.308 (a)(3)(ii)(C) Workforce Security: Termination Procedures
    Addressable: Making sure that proper employee termination procedures are followed

Sign-up for Action1 Free Edition to install/uninstall software and patches, receive real-time alerts and view instant data from your endpoints, or run live or scheduled queries with the ability to export to CSV or Excel. Action1 Endpoint Security Platform is entirely SaaS, with online web interface (no management tools to install) and it has zero cost for basic functionality. Running in the Cloud, Action1 discovers all of your endpoints in seconds and you can query your entire network in plain English.





Achieve More With Our Integrations and RESTful API


Action1 provides RESTful API and integrates with the following systems so you can get most out of your deployment:

Action1 Integrations




Hundreds of Organizations Worldwide Use Action1 Platform



Community College in Texas

Our students love technology. But sometimes they break it too. Action1 allows us to understand all abnormal activities happening on college computers.

Community College in Texas

European Construction Conglomerate

Action1 plays a critical role in our cybersecurity strategy. The ability to instantly understand what is happening on your endpoints is priceless.

European Construction Conglomerate

City Government in Georgia

Our city prides on being one of the most digititally transformed cities in the region. Without Action1, the risks of managing the infrastructure were too high.

City Government in Georgia