The answer is CSO (Chief Security Officer).
The Health Insurance Portability and Accountability Act of 1996 (HIPAA) required the Secretary of the U.S. Department of Health and Human Services (HHS) to develop regulations protecting the privacy and security of certain health information.
To fulfill this requirement, HHS published what are commonly known as the HIPAA Privacy Rule and the HIPAA Security Rule.
Under the security standard, security responsibilities must be assigned to a specific individual (called a chief security officer). This chief security officer's (CSO) responsibilities include the management and supervision of (1) the use of security measures to protect data, and (2) the conduct of personnel in relation to the protection of data.
This CSO position is important in providing an organizational focus for security issues, emphasizing the importance of security, and pinpointing responsibility.
The CSO will be responsible for developing, administering, and overseeing policies to ensure the prevention, detection, containment and correction of security breaches. Security management also includes risk analysis and risk management.
See HIMMS.org's Applying Your Corporate Compliance Skills tothe HIPAA Security Standard to learn more.