HIPAA HITECH Security Evaluation
The American Recovery and Reinvestment Act (ARRA) calls for heightened information technology (IT) security specific to Protected Health Information (PHI). Ensuring that your facility is in compliance with ARRA’s “HIPAA HITECH” regulations is critical because, unlike HIPAA regulations in the past, there is a renewed focus on compliance assessment and the potential for fines.
QHR’s HIPAA HITECH Security Assessment provides a short-duration, intensively focused review of your facility’s IT policies and procedures specific to the stewardship of PHI. The end result – whether your facility is host to a simple or complex IT environment – is a clear, concise Gap Analysis report with recommended remediation procedures (i.e. a Management Action Plan).
Specifically, QHR’s seasoned IT experts:
Review and assess your facility’s current HIPAA processes and procedures, including:
- Policies, procedures and standards
- Inventory of systems and devices that contain HIPAA-sensitive data
- Risk assessment consistency and standards
- Remediation plans.
- Assess existing tools in use from both compliance and capabilities perspectives
- Evaluate your facility’s current IT security posture alongside the HIPAA Security Rule and industry best practices
- Analyze hardware, software or modifications in procedures and/or processes with the goal of helping the Client Information Security Organization improve its efficiency, cost effectiveness and compliance to the HIPPA Security Rule and corporate governance
- Educate your facility’s relevant staff on ARRA’s HIPAA HITECH to encourage support of and assistance with improvement initiatives
- Recommend solutions designed to help ensure that your facility is compliant!
