HIPAA Gap Analysis, Risk Assessment and Risk Analysis

This training on HIPAA compliance will teach the attendees how to examine their security policies, practices, and risk issues to find and fill any gaps in the documentation that is required by the HIPAA rules to show compliance, survive audits, and avoid enforcement action.

Why Should You Attend:

Any organization subject to HIPAA needs to compare its information-handling practices to the requirements of HIPAA in order to identify gaps between current and required practices. HIPAA requires a risk analysis to determine security risks to electronic information and implementation of measures to reduce those risks and vulnerabilities to a reasonable and appropriate level. The meaningful use requirements also require eligible hospitals and eligible professionals to conduct or review a HIPAA Security Rule risk assessment of the certified electronic health record (EHR) technology annually, and implement security updates and correct identified security deficiencies as part of its risk management process. And the policies reviewed, risk analysis performed, and mitigation actions taken must all be documented so that they can withstand the scrutiny of investigators from the US Department of Health and Human Services.

Attend this 90-minute webinar to learn how to properly conduct a policy review and risk analysis. Learn what safeguards need to be in place, what documentation is required, and what follow-through needs to be done. We will examine the pluses and minuses of various available free tools, and in-house versus outsourced reviews.