HHS offers security risk assessment tool for smaller practices

Beth Walsh | | Health Exec | Cybersecurity

A new security risk assessment (SRA) tool from the Department of Health & Human Services is designed to help guide healthcare providers in small to medium-sized offices conduct risk assessments of their organizations.

The SRA tool is the result of a collaborative effort by the HHS Office of the National Coordinator for Health Information Technology and Office for Civil Rights. The tool is designed to help practices conduct and document a risk assessment in a thorough, organized fashion at their own pace by allowing them to assess the information security risks in their organizations under the HIPAA Security Rule. The application also produces a report for auditors.

Conducting a security risk assessment is a key requirement of the HIPAA Security Rule and a core requirement for providers seeking payment through the Medicare and Medicaid EHR Incentive Program, commonly known as the Meaningful Use Program.

The SRA tool’s website contains a user guide and tutorial video to help providers begin using the tool. The tool is available for both Windows operating systems and iPads.

Beth Walsh,

Editor

Editor Beth earned a bachelor’s degree in journalism and master’s in health communication. She has worked in hospital, academic and publishing settings over the past 20 years. Beth joined TriMed in 2005, as editor of CMIO and Clinical Innovation + Technology. When not covering all things related to health IT, she spends time with her husband and three children.

Related Content

FBI seeking extradition of Israeli prisoner accused of $500M in ransomware attacks
Data breach at chain of clinics impacts 450K patients
Nebraska becomes first state to sue Change Healthcare over data breach
Christmas ransomware exposed over 300K patient records to dark web
Cryo-frozen tissue manufacturer suffers cyberattack
First surgical device of its kind granted key FDA exemption

Around the web

Radiology Business
The biggest challenges facing radiology business managers in 2025

RBMA President Peter Moffatt discusses some of the biggest obstacles facing the specialty in the new year. 

Radiology Business
Policies and regulations shaping radiology in 2025

Mark Isenberg, executive vice president of Zotec Partners, discusses key developments that will reshape the specialty this year. 

Cardiovascular Business
FDA says years-long tirzepatide shortage is resolved, will give limited leeway to compounders

The tirzepatide shortage that first began in 2022 has been resolved. Drug companies distributing compounded versions of the popular drug now have two to three more months to distribute their remaining supply.