HHS offers security risk assessment tool for smaller practices
A new security risk assessment (SRA) tool from the Department of Health & Human Services is designed to help guide healthcare providers in small to medium-sized offices conduct risk assessments of their organizations.
The SRA tool is the result of a collaborative effort by the HHS Office of the National Coordinator for Health Information Technology and Office for Civil Rights. The tool is designed to help practices conduct and document a risk assessment in a thorough, organized fashion at their own pace by allowing them to assess the information security risks in their organizations under the HIPAA Security Rule. The application also produces a report for auditors.
Conducting a security risk assessment is a key requirement of the HIPAA Security Rule and a core requirement for providers seeking payment through the Medicare and Medicaid EHR Incentive Program, commonly known as the Meaningful Use Program.
The SRA tool’s website contains a user guide and tutorial video to help providers begin using the tool. The tool is available for both Windows operating systems and iPads.
Editor Beth earned a bachelor’s degree in journalism and master’s in health communication. She has worked in hospital, academic and publishing settings over the past 20 years. Beth joined TriMed in 2005, as editor of CMIO and Clinical Innovation + Technology. When not covering all things related to health IT, she spends time with her husband and three children.