Helping to Secure Our Clients' Protected Health Information and Systems
As Meaningful Use and ICD-10 regulatory initiatives provide opportunities to implement and upgrade systems, the opportunity also exists to re-establish privacy and security practices and procedures. Crowe Horwath LLP's five-step process provides a comprehensive analysis of the gaps and remediation/implementation plan to help protect the privacy of patients.
Please review our list of professional services below:
- Executive assessment
- Readiness assessment
- Project management (PMP)
- Vendor selection (RPI and RFP)
- Attestation assistance
- Strategic road map
- Testing
|
- Risk assessment
- HIPAA risk/gap analyses and remediation
- Subject-matter expertise (SME)
- Data warehousing
- EMR optimization
- Monitoring and support
- Audit
|
Learn more about our services.
Security and Privacy Risk Analysis:
Five Steps to a Practical Approach
| Step |
Security Risk Analysis |
Privacy Risk Analysis |
| 1 |
Conduct policy gap analysis. |
| 2 |
Create software application inventory and risk rating. |
Identify participants for privacy survey. |
| 3 |
a) Conduct gap analysis among highest-risk applications.
b) Conduct entity-level controls gap analysis. |
Conduct privacy survey of selected departments. |
| 4 |
Conduct survey-based gap analysis of remaining applications. |
Update policy gap analysis with results of privacy survey. |
| 5 |
Conduct hospital walk-through. |