HIPAA Compliance: ONC Updates Security Risk Assessment Tool

Advertisement

BEGIN ARTICLE PREVIEW:

By Jessica Davis

September 15, 2020 – The Office of the National Coordinator (ONC) in collaboration with the Office of Civil Rights released an update to the Department of Health and Human Services Security Risk Assessment Tool designed to support small- and medium-sized healthcare providers ensure HIPAA compliance. 

Updates to the SRA tool include various new features, such as improved navigation throughout the assessment sections, export options for reports, and enhanced user interface scaling. 

Under HIPAA, covered entities and their business associates are required to perform a risk assessment to assess compliance with HIPAA’s administrative, physical, and technical safeguards. An effective analysis will reveal potential security gaps that could put protected health information at risk. 

Dig Deeper

Industry stakeholders have also reminded organizations that risk assessments and analyses are crucial to any resilient healthcare information security program.

To help organizations with limited security resources, ONC and OCR developed a downloadable SRA tool to support healthcare entities with the risk assessment process as required by HIPAA and the Centers for Medicare and Medicaid Service Electronic Health Record Incentive Program. 

In November 2019, ONC reminded organizations of the tool’s benefits. Last updated in 2018, the free resource includes an enhanced user interface, custom assessment …

END ARTICLE PREVIEW

READ MORE FROM SOURCE ARTICLE