HIPAA Security Analysis Ensures Healthcare Practice is in Compliance
- Need: A small healthcare practice required an information security risk assessment to ensure their practice was in compliance with Medicare and Medicaid Electronic Health Record (EHR) Incentive Programs.
- Method: General Informatics leveraged industry standard compliance guidelines and IT best practices in order to form a plan of action for performing the assessment. After this plan of action was developed, General Informatics performed personnel interviews with the client and analyzed the client’s IT infrastructure, applications, and security policies in order to ascertain the client’s existing security posture.
- Benefit: At the end of the engagement, the client was presented with a comprehensive report detailing the practice’s current security posture, as well as a list of needed improvements and a detailed path to remediation of any discovered issues.