Mastering HIPAA HITECH Security Risk Assessments: A Step-by-Step Compliance Guide

How to Conduct a HIPAA HITECH Security Risk Assessment

This course will cover the proper methodologies on conducting a HIPAA Risk Assessment based on the formula used by Federal auditors and via the guidelines of the NIST (National Institute of Standard for Technologies). The course will also cover the most important aspects to be aware of in terms of the Federal auditing process as well as the new risks regarding patients suing for wrongful disclosures.

•  Updates for 2025
•  Policies and Procedures
•  Risks
•  Business associates and the increased burden
•  NIST based Risk Assessment

Have you done a HIPAA Risk Assessment? Do you know that a risk assessment is the first thing the Feds will ask for in an audit? Is your risk assessment adequate? Do you have written policies in place for every single one of the implementation specifications of the HIPAA Security Rule (even ones that don't apply)? Do you know this is required?

I will show how to conduct a PROPER risk assessment point by point and how to avoid scams in the market. We will also be discussing the absolute importance of doing a risk assessment and that this is the first thing the OCR will ask for. I will instruct the listeners on how to write proper policies and procedures, which are to be based upon the findings of the risk assessment, and how to word the policies to satisfy the Fed. We will also discuss the importance of having policies that are consistent with your procedures and also discuss the negative ramifications of cookie cutter templates in the eyes of the HHS.

This webcast will be of a valuable assistance to the below audience.

•  Healthcare business associates
•  Practice managers
•  MDs and other medical professionals
•  Any business associates who work with medical practices or hospitals (i.e., billing companies, transcription companies, IT companies, answering services, home health, coders, attorneys, etc)

Companies/Organizations

•  Private practice
•  Hospitals
•  Billing companies
•  Transcriptions companies
•  Home health groups
•  Health insurance
•  Ambulatory
•  IT companies
•  Attorneys

Association/Societies

• Practice Managers Associations.