We put IT in Data SecurITy!™

The HIPAA Security Rule requires covered entities to conduct a risk analysis in order to evaluate risks and vulnerabilities in their environments and to implement policies and procedures to address those risks and vulnerabilities.  Conducting a HIPAA risk analysis that effectively addresses the protection of patient information, meets regulatory requirements, and assists in the mitigation of identified vulnerabilities is no small task. TFS is here to help!

Our HIPAA Risk Analysis Workshop combines our proven methodology and hands-on training from a team of seasoned experts with our comprehensive risk analysis tool.  Based on the NIST 800-30 (National Institute of Standards and Technology’s 800 Series of Special Publications - Risk Management Guide for Information Technology Systems), TFS has designed our HIPAA Risk Analysis Tool to be a comprehensive risk analysis and risk assessment as detailed in the HIPAA Security Rule, including a methodology to document your system inventory, interfaces, threats, vulnerabilities and complete mitigation strategies.  

As the HIPAA Security Rule requires, the risk analysis tool is designed to be an ever-changing document that records all risks and potential risks along with the detailed mitigation plans and resolutions for each one. To accomplish this, covered entities must periodically evaluate their systems and infrastructure to ensure that all risks are identified and a mitigation plan is developed for each one, assigning estimated completion dates and documenting when risks have been fully mitigated.   

Rely on TFS’ expertise and thorough, systematic approach to assist you in conducting a complete security Risk Analysis in order to ensure that your organization meets the Security Rule requirements and is successful on your journey toward HIPAA compliance.