10-Point Tactical HIPAA Compliance & Cyber Risk Management Assessment™
Find out where you stand and get a clear plan of action with our rapid 10-Point Tactical assessment of your current HIPAA compliance and cyber risk management program. The report includes actionable recommendations to address any identified gaps.
1. Set privacy & security risk
management & governance
program in place
(45 CFR § 164.308(a)(1))
2. Develop & implement HIPAA
privacy, security, & breach
notification policies & procedures
(45 CFR §164.530 and 45 CFR §164.316)
3. Train all members
of your workforce
(45 CFR §164.530 and 45 CFR §164.316)
4. Complete HIPAA
security risk analysis
(45 CFR §164.530 and 45 CFR §164.316)
5. Complete HIPAA security
risk management
(45 CFR §164.308(a)(1)(ii)(B))
6. Complete HIPAA security evaluation (e.g. “compliance assessment”)
(45 CFR § 164.308(a)(8))
7. Complete technical testing of your environment
(45 CFR § 164.308(a)(8))
8. Implement strong, proactive Business Associate management program
(45 CFR §164.502(e) and 45 CFR §164.308(b))
9. Complete Privacy Rule & Breach Rule compliance assessments
(45 CFR §164.530 and 45 CFR §164.400)
10. Document & act upon remediation plan
(45 CFR §164.530(c) and 45 CFR §164.306 (a))
Interested in how we can provide your organization with a 10-Point Tactical HIPAA Compliance & Cyber Risk Management Assessment™?
- Encompass Health Automates Its HIPAA Compliant Risk Assessment & Strengthens Security Risk Management - January 21, 2019
- Test 1.2.3. - January 15, 2019
- Choosing an Information Risk Management Framework: The Case for the NIST Cybersecurity Framework (CSF) in Healthcare Organizations - January 9, 2019
