Purchase any WEBINAR and get
10% Off
Validity : 21st Apr'24 to 01st May'24
Risk Analysis and Risk Management (RA-RM) are OCR’s top enforcement priority and the basis of every HIPAA Compliance program. RA-RM steps are easy to follow – if you know the steps. But the HIPAA Rules do not lay out specific RA-RM steps. According to OCR, the HIPAA RA-RM steps are easy to find. They simply are certain procedures explained by the National Institute of Standards and Technology (NIST) in manuals that are free to download. Nevertheless, the largest, The most important nationwide HIPAA violation is failure to perform HIPAA compliant RA-RM was revealed by OCR on December 17, 2020, when it published shocking results of its Phase 2 HIPAA Compliance Audits. OCR found:
They failed despite the fact that they had been provided with all the audit questions and a list of the documents they would be required to provide well in advance and knew they were short-listed to be audited!
OCR Guidance – NIST Procedures
OCR has provided significant RA-RM guidance beginning in 2010 explaining 9 Risk Analysis elements and recommendations that organizations follow NIST procedures. This webinar explains key NIST terms such as Risk, Threat, Vulnerability, Impact, Likelihood and Control and the NIST RA-RM procedures in plain language, step-by-step.
OCR/NIST RA-RM steps are easy to follow when you know the steps.
The webinar covers HIPAA Security Rule RA-RM that applies to Protected Health Information (PHI) transmitted or maintained Electronically (EPHI). But every organization has PHI in other forms and formats – Non-EPHI. The HIPAA Privacy Rule requires administrative, technical, and physical safeguards to protect all PHI. NIST procedures are applicable to RA-RM of PHI in any form or format. And every organization has that kind of PHI, for example, paper records, forms, schedules, etc.
Learn how to protect your organization by identifying the risks and managing those risks to all PHI in every form and format. It will turn HIPAA RA-RM mystery into mastery. You’ll learn how to perform the steps and create the documentation you need to pass an OCR audit. Most important, however, you’ll see how to identify and manage Risks to the Privacy and Security of protected health information (PHI) maintained and transmitted in any form that seriously endangers your organization’s well-being.
Failure to do HIPAA RA-RM puts your organization in grave danger. This webinar will show you how to do a complete HIPAA RA-RM step-by-step and how easy it is to follow those steps when they are explained. You should attend this webinar to learn why you must worry about not doing a HIPAA RA-RM properly – and how you can stop worrying by simply doing a HIPAA RA-RM as required every year.
Paul R. Hales, J.D. is widely recognized for his ability to explain the HIPAA Rules clearly in plain language. Paul is an attorney licensed to practice before the Supreme Court of the United States and a graduate of Columbia University Law School with an international practice in HIPAA privacy and security. He is the author of all content in The HIPAA E-Tool®, an Internet-based, complete HIPAA compliance solution with separate editions for Covered Entities, Business Associates, Health Plans and Third Party Administrators.