| Framework | HIPAA Security Rule |
|---|---|
| Control ID | §164.310(c) |
| Control Family | Physical Safeguards > Workstation Security |
| Control Name | Workstation Security |
| Status | PARTIALLY IMPLEMENTED |
| Assessment Date | 2026-04-19T02:25:35.202960+00:00 |
| Assessor | TITAN AI Scanner v2.0 (CONDUCTOR + BASTION + SCOUT + COMPLY + SAGE) |
| Environment Scope | Azure: Pay-As-You-Go (prod) (4f29d094-1079-44c9-acb0-4d73a7a2dd34) |
| Report ID | b49411963b864e3a98e4aa93a9659610ca5f63797ca7cb1513f947dbf347f406 |
Standard: Workstation security. Implement physical safeguards for all workstations that access electronic protected health information, to restrict access to authorized users.
Source: https://www.ecfr.gov/current/title-45/subtitle-A/subchapter-C/part-164/subpart-C/section-164.310
Each implementation specification addressed separately per HIPAA §164.306(d) / NIST 800-53A assessment methodology.
Summarized with counts + exceptions + drill-down. Raw data available on request per retention policy.
Test of Design (does the control exist?) + Test of Operating Effectiveness (does it work consistently?). Sampling per AICPA AU-C 530.
142 endpoints
98.6% coverage. 2 outliers remediation in flight.
Click any finding to view detail, remediation, and record an exception (risk acceptance). Exceptions are retained in the report as part of the audit trail.
endpoint:WKSTN-0047, WKSTN-0119
2 Mac endpoints with FileVault disabled.
▾
SOC 2 Type 2 and HITRUST assessors require management's written response to findings.
| Scanner | TITAN AI Scanner v2.0 (CONDUCTOR + BASTION + SCOUT + COMPLY + SAGE) |
|---|---|
| Scanner version | v2.0.1 |
| Collection timestamp | 2026-04-19T02:25:35.202960+00:00 |
| Retention | 2555 days (HIPAA 164.316(b)(2)) |
| Report hash (SHA-256) | b49411963b864e3a98e4aa93a9659610ca5f63797ca7cb1513f947dbf347f406 |
This same evidence is admissible for the following related controls. Scan once, satisfy multiple frameworks.
PE-2, PE-3, PE-5, AC-11 — same evidence satisfiesA.11.2.8 — same evidence satisfies08.j, 08.k, 08.l — same evidence satisfies