HIPAA: Health Insurance Portability and Accountability Act

HIPAA

Health Insurance Portability and Accountability Act

What is HIPAA?

HIPAA is an information security standard aimed to protect patient data healthcare organizations are entrusted with. It is closely regulated by the Office for Civil Rights (OCR).

How Does FRSecure Approach HIPAA Engagements?

Like many security standards, it all starts with doing the basics right. FRSecure starts with a risk assessment—giving you an in-depth look at where your strengths and weaknesses are as it relates to protecting patient data.

Request a Quote

HIPPA: Health Insurance Portability and Accountability Act

HIPAA Processes

Risk Assessment

A HIPAA and OCR engagement starts with a risk assessment. We take a holistic view of your security program while simulastaneously mapping to OCR protocols and satisfying MACRA MIPS.

Gap Analysis

Because FRSecure risk assessments map directly to OCR protocols, each report shows all OCR controls and where your organization does or does not comply. Also, looking at your security program in total, the gap analysis shows the checkbox compliance gaps as well as general security best practice gaps.

Remediation

Knowing where your gaps are in OCR protocols, FRSecure provides you with detailed remediation steps to help you fill any compliance gaps you may have.

Real-Time Improvements

Retesting is an important component of remediation. Your organization should be able to understand how each remediation effort impacts its overall security program. With an FRSecure risk assessment, the adjustments you make to your remediation report will immediately update your risk assessment and OCR mapping.

HIPAA FAQ

Who created HIPAA?

The Health Insurance Portability and Accountability Act (HIPAA) was enacted by the United States Congress.

Who needs to comply with HIPAA?

All healthcare providers in the United States need to be HIPAA compliant. This includes hospitals, doctors, clinics, psychologists, dentists, chiropractors, nursing homes, and pharmacies.

What’s required to comply with HIPAA?

To comply with HIPAA, general security best practices come into play. This includes adhering to and implementing required technical, administrative, and physcial safeguards.

HIPAA Services

RISK ASSESSMENT

Risk assessments are the driving force behind all good information security programs. An FRSecure risk assessment measures the administrative, physical, internal technical, and external technical components of your security program and maps those controls to OCR protocols and controls.

GAP ASSESSMENT

Gap assessments are conducted with regulatory requirements in mind. We’ll take a look at where your security program is relative to the OCR requirements, and then provide you with the appropriate adjustments needed for you to become compliant.

VIRTUAL CISO

A security expert in your back pocket, virtual CISO (vCISO) engagements provide a dedicated security resource to your business to help grow its security program. An FRSecure vCISO will conduct a risk assessment and develop policies, processes, and procedures to hit your security, compliance, and business goals.

ROADMAPPING

An FRSecure roadmap is a detailed plan to help your organization get from point A to point B. Each roadmap is based on the results of your risk and gap assessments and takes your business and security team’s goals and objectives into account. The result is a documented and provable process for improving your weakest security areas—or those in which you don’t meet OCR compliance.

Let’s Talk

Contact us today to get ready for HIPAA.

#sexy-author-bio{border-style:none;border-top-width:px;border-right-width:px;border-bottom-width:px;border-left-width:px;}#sab-author{font-weight:600;}#sab-gravatar{width:100px;}#sab-gravatar a{}#sab-author a{margin-right:10px;text-decoration:underline;text-transform:none;}#sab-byline{font-weight:700;text-decoration:none;text-transform:none;}#sab-description{font-weight:400;}[id^=sig-]{height:48px;width:48px;margin-top:2px;margin-right:2px;margin-bottom:2px;}#sab-gravatar img{border:0 !important;}#sexy-author-bio{padding:0 !important;}@media (min-width: 1200px){}@media (min-width: 1019px) and (max-width: 1199px){}@media (min-width: 768px) and (max-width: 1018px){}@media (max-width: 767px){[id^=sig-]{margin-left:0;margin-right:2px;}}.additional_information_tab{display:none;}#gform_totals_22 > li:nth-child(2) > label{display:none !important;}#gform_totals_22 > li:nth-child(1) > label{display:none !important;}#gform_totals_22 > li:nth-child(3) > label{display:inline !important;}#gform_totals_22 > li:nth-child(1){display:none !important;}#gform_totals_22 > li:nth-child(2){display:none !important;}@media (max-width:340px){.main_menu #avia-menu #menu-item-search{display:none;}}@media (max-width:768px){.hbspt-form form fieldset{margin-bottom:0 !important;}#toc_container{width:100%;margin-bottom:40px;}}body.page-id-16305 .hs-form-field label,body.page-id-16305 nav,body.page-id-16305 #footer,body.page-id-16305 #socket{display:none;}body.page-id-16305 .hs-error-msgs label{display:inline;}#menu-item-14327 a{background-color:#f99e26;}.formheader h1{font-weight:900 !important;}.ctaiframe{min-height:500px !important;}@media (min-width:1024px){body.page-id-15854 .avia-timeline .milestone_icon{height:220px !important;width:220px !important;line-height:220px !important;}}.clutchbig,#clutch .avia_codeblock,.clutch-widget iframe{max-width:1014px !important;margin:auto !important;}body.page-id-16305 .hs-form-field label,body.page-id-16305 nav{display:inline;}.hs-form-required{display:none;}body.page-template-template-landing-page #footer,body.page-template-template-landing-page #socket,body.page-template-template-landing-page #header{display:none;}body.page-template-template-landing-page #main{padding-top:0 !important;}body.page-template-template-landing-page #av_section_1{padding-bottom:50px;}.essb_postfloat_fixed{padding-top:60px;}#checklist *{list-style-type:none;}#checklist li{margin-left:0;}body.page-id-17762 .avia_image{max-height:90px;width:auto !important;}body.page-id-17762 .avia-image-container{padding:10px 0 10px 0;}body.page-id-17749 a[class~="team-ambush_sort_button"]{display:none !important;}body.single .entry-content a,body.single .entry-content a strong{color:#00857d !important;text-decoration:underline;font-weight:normal !important;}body.single .entry-content strong{color:#000 !important;}#sab-author .av-share-link-description a{color:#000 !important;font-weight:bold !important;}body.single .entry-content .essb_links li a{color:#fff !important;}body.single .blog-tags strong{color:#000 !important;}.gform_wrapper .gform_body .gform_page_fields label{display:inline-block !important;}.dynamic-content{display:none;}.dynamic-content-overall{display:none;}.sp_flat .field_sublabel_below .gfield_label{text-transform:inherit;font-size:21px !important;margin-bottom:24px;}.sp_flat .field_sublabel_below ul li{border:1px solid #e4e4e4;border-radius:6px;margin-top:1rem;}.sp_flat .field_sublabel_below ul li label{opacity:1 !important;font-size:16px !important;font-weight:400 !important;line-height:25.6px !important;color:#737a96 !important;cursor:pointer;padding:21px;}.sp_flat .field_sublabel_below ul li{padding:0;}.sp_flat .field_sublabel_below ul li label:before{background-color:#f99e26 !important;content:"✓" !important;}.gf_stylespro.sp_flat .button{color:#fff;background-color:#f99e26;border-color:transparent !important;}.sp_flat .field_sublabel_below ul li.selected{border:3px solid #f99e26;}.gf_stylespro.sp_flat .button{color:#fff !important;background-color:#f99e26 !important;border-color:transparent !important;}#gform_page_26_5 #field_26_9 label{display:none !important;}#quizheader h1.av-special-heading-tag{font-size:3em !important;font-weight:bolder !important;line-height:1em !important;}