The need for HIPAA security is always changing. Not only does a CE (covered entity) have to keep up with the latest attack methods of hackers, but they must also accommodate the changes in the HIPAA Security and HIPAA Privacy Rule.
To keep up with the latest security threats, it’s vital to do an internal audit of the HIPAA security measures you have already taken, and also discover where your security could use bolstering. The United States government has provided a free tool at HealthIT.gov to help you accomplish this.
This tool can help identify and assess risk with ePHI in all medical apps, servers, medical portals, websites, kiosks, and more. Let’s take a look at what the SRA tool does—and what it doesn’t do.