See Pricing

HIPAA Security Risk Analysis

As a result of the changes driven by The HITECH (Health Information Technology for Economic and Clinical Health) Act, all Covered Entities and Business Associates must be compliant and completing a formal Security Risk Analysis is a crucial step in doing so. Enforcement of compliance has increased significantly over the last year and includes the following:

  • Mandatory AuditsP.A.T. Certified Auditor
  • Business Associates Must Comply With New Laws
  • Subcontractors Must Comply With New Laws
  • Non-compliance Fines Are Being Enforced
  • Stiffer Penalties
  • Jurisdiction Provided To State Attorneys General To File Civil Actions Against Violators

Because of this, it is more important now, than ever before, to build your organizations risk management program on a methodical and proven software solution.

Based on NIST 800-series methodologies, HIPAA One® rigorously follows the 4-step process to conduct a Security Risk Analysis per the following Federal guidance:

NIST800-30rev1 5 step 9 step

HIPAA One takes a 3-step process:  1 – answer questions, 2 guided remediation plan, 3 sign and track ongoing progress.  Below are a screenshots showing examples of each step:HIPAA One Security example 6-16

HIPAA One automates threat identification, vulnerability and control analysis, likelihood, impact and sorts them by risk providing suggestions to fix them:

Remediation Example

Remediation Example

After digital signatures finalizing the HIPAA SRA “Snapshot”, the report generates in about 9 seconds allowing to immediately start and track ongoing risk management:

Final Report and Dashboard Example

Final Report and Dashboard Example

Engagement Models

To learn about our three different levels of service, click here.

*All HIPAA One licenses include:HIPAA OneTM Certified Seal

  • 1 year of access to our SaaS platform
  • Access to our experienced, certified audit and security team
  • Nessus Professional Feed® Vulnerability Scan
  • Policies and Procedures Templates
  • $100,000 Breach Assurance 
  • Automated Risk Analysis, documentation and reporting
  • Unlimited users and remediation updates
  • State, Federal and Best Practice updates
  • Access to our Certified Audit Support Team
  • Web site “Certified Compliant Seal”
  • All data portable to PDF or .csv file

HIPAA Security Risk Analysis Software

As mentioned above, we have an established HIPAA One® Security Risk Analysis software solution. If you have any questions about it, please feel free to contact us. If you’d like to be contacted to see a demo, learn more about how we can automate most of the effort, please fill out the form below:


* These fields are required.