Our HIPAA security and privacy assessment services can range from a high-level assessment to a comprehensive assessment. The high-level assessment is comprised of reviewing the current state of the organization’s HIPAA readiness and plans for future activities. Our detailed assessment service can range from performing a comprehensive assessment of HIPAA compliance on the entire organization to performing a more complete inventory of applications, business processes, policies, disaster preparedness, procedures, technical infrastructure, and processes. A detailed report entails compliance status per HIPAA area with description of current practices and gaps, detailed descriptions of areas for improvements with priority, responsible and investment as well as a proposed action plan indicating tasks and project activities. In addition, we can assist you to implement HIPAA security and privacy compliance in all areas.
HITECH has defined additional security and privacy requirements. We can assess your current status with these requirements and or assist you to implement process and tools to meet these requirements based on existing industry security frameworks such as ISO27799, HITRUST, etc.