Blog
HIPAA Risk Analysis Tip – Part 2 – Questions & Answers from May 3rd Conversation with Former OCR Director Leon Rodriguez We received almost 100 questions in our May 3rd web event entitled “WHAT OCR EXPECTS IN YOUR HIPAA RISK ANALYSIS: A Conversation with Former OCR Director, Leon Rodriguez”. We are breaking up the questions and […]
Read More
HIPAA Risk Analysis Tip – Part 1 – Questions & Answers from May 3rd Conversation with Former OCR Director Leon Rodriguez We received almost 100 questions in our May 3rd web event entitled “WHAT OCR EXPECTS IN YOUR HIPAA RISK ANALYSIS: A Conversation with Former OCR Director, Leon Rodriguez”. We are breaking up the questions and […]
Read More
HIPAA Risk Analysis Tip – 9 Essential Elements of OCR-quality Risk Analysis – a Quick Tutorial People like steps– steps to take in a process. It’s like instructions: do this, then do this, then do this… there’s order and a sense of comfort in following a clearly articulated plan. That’s what this blog is hoping […]
Read More
HIPAA Risk Analysis Tip – What Captures OCR’s Attention? There’s pain in the voices of CISOs who haven’t been able to persuade their executive team to invest in an accurate, thorough enterprise-wide HIPAA risk analysis and risk management plan. CEOs too often are willing to take on risk to increase revenue rather than mitigate existing risk to […]
Read More
HIPAA Risk Analysis Tip – What Level of Detail is Adequate? Short Answer: Every “asset-threat-vulnerability” combination must be risk-analyzed! In order to conduct a thorough and accurate risk analysis, it’s imperative to identify the threat sources, threat events and vulnerabilities that might compromise the confidentiality, availability and/or integrity of the health information entrusted to your […]
Read More
HIPAA Risk Analysis Tip – How Comprehensive Must Your HIPAA Security Risk Analysis Be? Short Answer: All information assets in all lines of business in all facilities and in all locations. OCR just entered into its 50th Resolution Agreement / Corrective Action Plan with CardioNet, Inc., the 39th case involving ePHI and therefore requiring a […]
Read More
HIPAA Risk Analysis Tip – Does OCR really use the “Guidance on Risk Analysis Requirements under the HIPAA Security Rule”? Short Answer: YES! As long ago as June of 2005, the Department of Health and Human Services (HHS) began publishing a series of seven security articles providing guidance on the “Security Standards for the Protection […]
Read More
HIPAA Risk Analysis Tip – May 3rd Webinar with Leon Rodriguez – What OCR Expects in Your HIPAA Risk Analysis Join former OCR Director Leon Rodriguez (9/2011-7/2014), now a Partner at Seyfarth Shaw LLP and Bob Chaput, CEO, Clearwater Compliance, on May 3rd at 12 noon Eastern Time for an interactive presentation and discussion of OCR’s emerging […]
Read MoreThousands of professionals trust Clearwater to bring them the latest news and information on Compliance and Cybersecurity Risk Management.
