Healthcare organizations (covered entities and business associates) must complete a HIPAA Risk Analysis as required under HIPAA Part No. §164.308(a)(1)(ii)(A). These engagements are essential to address threats to Protected Health Information (PHI). The HIPAA Risk Analysis is a thorough assessment of the potential risks and vulnerabilities to the confidentiality, integrity, and availability of the PHI that organizations create, receive, maintain, and transmit. These examinations are required upon any changes to the infrastructure and it is recommended that they be performed on a regular basis to protect the organization.
Stern Security's HIPAA Risk Analyses include organizational reviews, data breach threat analysis, and security testing.