HIPAA Risk Analysis Tip – May 3rd Webinar with Leon Rodriguez – What OCR Expects in Your HIPAA Risk Analysis
Join former OCR Director Leon Rodriguez (9/2011-7/2014), now a Partner at Seyfarth Shaw LLP and Bob Chaput, CEO, Clearwater Compliance, on May 3rd at 12 noon Eastern Time for an interactive presentation and discussion of OCR’s emerging standard of care in performing the Risk Analysis required at 45 C.F.R. §164.308(a)(1)(ii)(A).
The joint presentation is entitled “What OCR Expects in Your HIPAA Risk Analysis”. You may register here.
OCR issued “Guidance on Risk Analysis Requirements under the HIPAA Security Rule” in July 2010. Yet, healthcare entities struggle to perform this foundational compliance requirement and critical cyber risk management step.
As of this writing, in 37 OCR cases involving ePHI that resulted in Settlement Agreements / Corrective Active Plans, 33 organizations or 89% presented inaccurate or incomplete risk analyses. The 2012 Phase I audits showed 68% of the 115 audited organizations having adverse findings related to risk analysis.
Learn the root causes of these adverse findings and, more importantly, learn exactly what OCR expects in your HIPAA risk analysis and how to conduct an OCR-quality risk analysis. This webinar is designed to help covered entities and business associates understand and act on the specific Risk Analysis requirements included in the HIPAA Security Rule.
Learn how Clearwater may complete a Confidential, Complimentary Review of your current risk analysis, under the direction of outside counsel, and advise you of important actions to take to conduct an OCR-Quality HIPAA Risk Analysis.
Latest posts by Bob Chaput (see all)
- HIPAA Risk Analysis Tip – What Level of Detail is Adequate? - April 29, 2017
- HIPAA Risk Analysis Tip – How Comprehensive Must Your HIPAA Security Risk Analysis Be? - April 25, 2017
- HIPAA Risk Analysis Tip – Does OCR really use the “Guidance on Risk Analysis Requirements under the HIPAA Security Rule”? - April 23, 2017