Next Class: Fresno (Bitwise) Feb 10, 2017
Registration open Now!
  1. HIPAA Risk/Security Assessment Boot Camp Classes

    HIPAA Risk Assessment in a Hospice/Home Healthcare/Doctors Office Environment
    HIPAA Risk Assessment Boot Camp Tailored for the Hospice/Home Healthcare/Doctors Office Environment

    HipaaPlus's healthcare IT security experts apply proven processes and utilize a common controls framework that combines the identified HIPAA controls with other industry best practices for all risk assessments/analyses and gap/compliance assessments.
    Assessment controls include:

    • Administrative safeguards
    • Technical safeguards
    • Physical safeguards
    • Documentation requirements
    • Breach notification requirements.
    • Class cost is $895 (discounts for Non-Profits)

    Detailed Course Description  Register Now

  2. Advanced On-Site HIPAA Risk/Security Assessment (Not a Boot Camp)

    HIPAA Risk Assessment in a General Healthcare Office Environment
    HIPAA Risk Assessment Boot Camp Tailored for a General Healthcare Environment

    HipaaPlus's healthcare IT security experts apply proven processes and utilize a common controls framework that combines the identified HIPAA controls with other industry best practices for all risk assessments/analyses and gap/compliance assessments.
    Assessment controls include:

    • Administrative safeguards
    • Technical safeguards
    • Physical safeguards
    • Documentation requirements
    • Breach notification requirements.
    • Internal/External Vulnerability Scanning.
    • On-site inspection of physical controls
    • Typical cost from $1895-$6000 depending on size

    Request More Info/Quote

  3. Custom On-Site HIPAA/Security Training and/or consulting

    Have a group of 4 or more?
    HIPAAPlus customize the course material to meet your needs.
    Find Out More

  4. Boot Camp Detailed Course Description
    HIPAA Risk Assessment Boot Camp

    Four critical areas are covered in the Privacy and Security Risk Assessment:

    1) Physical Security

    • We assess the building grounds, windows, filing cabinets, alarm systems, and access control.

    2) Contractual Organization

    • Are there business associate agreements in place where they should be?

    3) Access to Protected Health Information

    • When are service personnel entering premises before, during and after business hours?
    • Staff interviews to determine if PHI is handled correctly

    4) IT Security

    • IT Policies/Procedures and current practices review: We analyze software, networks, passwords, old equipment disposal, PDAs, VPNs, removable media, firewalls, computer room, laptops, and encryption practices
    • Internal Network Scan: The consultant will perform an internal security scan of the client’s internal computer network. This will be conducted using industry standard software that finds vulnerabilities in devices attached to the network. This is typically performed while onsite at the company.
    • External Network Scan: The consultant will perform an external security scan of the externally facing web services. This will be conducted using industry standard software that finds vulnerabilities in devices exposed to the internet. Client IT resources will provide the external IP numbers to consultant to scan. This is typically performed while offsite.
    • IT Staff Interviews and analysis: Consultant will interview a representative sample of IT employees that handle HIPAA governed data. Client will make key individuals available at a mutually agreed time. This is typically performed in-person.