Security Risk Assessment Wizard - are you at risk?

August 4th, 2016 - Chris Woolstenhulme, CPC, CMRS
Categories:   Compliance   HIPAA|PHI  
0 Votes - Sign in to vote or comment.

Visit for a Security Risk Assessment (SRA) Tool complete with training and other guidance to aid practices in the complex SRA process.  The features of this tool allow facilities to perform a detailed Security Risk Assessment in an effort to meet Federal requirements.  Compliance is an ongoing process, and part of this process is evaluating risk and taking necessary measures to ensure the policies and procedures that you have in place are adequate for your organization.  This SRA Tool will help you to accomplish that as well as have more confidence in the steps that your practice has taken in order to meet regulations.

Why Perform a Security Risk Assessment

The Security Risk Assessment is required by the HIPAA Security Rule.  Any healthcare organization that stores, transmits or maintains PHI (Protected Health Information) in electronic formats is required to adhere to the HIPAA Security Rule.  Electronic formats include fax machines, scanners, email, electronic claims submission, EHR, and more.  As such, almost every practice today will find that they are required to implement sufficient policies and procedures to comply with the HIPAA Security Rule, and they must routinely perform the Security Risk Assessment.

Meaningful Use updates released in October, 2015 reinforce the HIPAA Security Rule.  This was done in an effort to send a message to healthcare organizations that they are very strongly urged to comply with security guidelines.  It should also serve as a reminder that enforcement actions are upon us and costly sanctions will be assessed for non-compliance of this regulation.

Performing a Secuirty Risk Assessment is also a requirement for successful Meaningful Use attestation.  Practices that have previously attested to Meaningful Use are being evaluated for verification that they have indeed performed the SRA.  Those practices that have made this positive attestation of having performed a periodic SRA, that are later investigated and found to have misled the government on this topic, are being required to reimburse the government for Meaningful Use monies paid out and are liable for other sanctions as well.

Due to the aforementioned details, Security Risk Assessment compliance is actively being investigated.  Practices should consider HIPAA Security and other compliance guidelines a top priority.

Features of the Security Risk Assessment Tool

Benefits of the Security Risk Assessment Tool

CCS Help Desk access is available to provide assistance and guidance for SRA Tool users.  Our Help Desk specialists are trained and certified in areas of coding, compliance, auditing and more.

The detail of the SRA Tool will provide confidence in the structure of the healthcare organization's HIPAA Security related policies and procedures.

Components of the Security Risk Assessment can be overwhelming and difficult to understand.  CCS has structured the SRA Tool and training modules in a manner that serves as a learning guide to SRA completion. 

This will help to best understand each question, appropriately answer each question and effectively create or update necessary policies and procedures as required by HIPAA Security.

The SRA tool contains a progress monitor which helps you to track your status of completion.  Users may start again where they have left off from the previous login.

To learn more about the SRA Wizard click here



Questions, comments?

If you have questions or comments about this article please contact us.  Comments that provide additional related information may be added here by our Editors.

Latest articles:  (any category)

CMS and HHS Tighten Enrollment Rules and Increase Penalties
October 1st, 2019 - Wyn Staheli, Director of Research
This ruling impacts what providers and suppliers are required to disclose to be considered eligible to participate in Medicare, Medicaid, and Children's Health Insurance Program (CHIP). The original proposed rule came out in 2016 and this final rule will go into effect on November 4, 2019. There have been known problems ...
Federal Workers Compensation Information
October 1st, 2019 - Wyn Staheli, Director of Research
When federal employees sustain work-related injuries, it does not go through state workers compensation insurance. You must be an enrolled provider to provide services or supplies. The following are some recommended links for additional information about this program. Division of Federal Employees' Compensation (DFEC) website Division of Federal Employees' Compensation (DFEC) provider ...
E-Health is a Big Deal in 2020
September 16th, 2019 - Chris Woolstenhulme, QCC, CMCS, CPC, CMRS
The new 2020 CPT codes are on the way! We are going to see 248 new codes, 71 deletions, and 75 revisions. Health monitoring and e-visits are getting attention; 6 new codes play a vital part in patients taking a part in their care from their own home. New patient-initiated ...
Chiropractic 2020 Codes Changes Are Here
September 9th, 2019 - Wyn Staheli, Director of Research
There are some interesting coding changes which chiropractic offices will want to know about. Are codes that you are billing changing?
Q/A: Is the Functional Rating Index by Evidence-Based Chiropractic Valid?
September 9th, 2019 - Wyn Staheli, Director of Research
Question Is the Functional Rating Index, from the Institute of Evidence-Based Chiropractic, valid and acceptable? Or do we have to use Oswestry and NDI? Answer You can use any outcome assessment questionnaire that has been normalized and vetted for the target population and can be scored so you can compare the results from ...
List of Cranial Nerves
September 3rd, 2019 - Find-A-Code
Cranial nerves are involved with some of our senses such as vision, hearing and taste, others control certain muscles in the head and neck. There are twelve pairs of cranial nerves that lead from the brain to the head, neck and trunk. Below is a list of Cranial Nerves and ...
So How Do I Get Paid for This? APC, OPPS, IPPS, DRG?
August 21st, 2019 - Chris Woolstenhulme, QCC, CMCS, CPC, CMRS
You know how to find a procedure code and you may even know how to do the procedure, but where does the reimbursement come from?  It seems to be a mystery to many of us, so let's clear up some common confusion and review some of the main reimbursement systems.  One of the ...

About Codapedia by InnoviHealth Systems Contact Us Terms of Use Privacy Policy Advertise with Us

Codapedia™ by InnoviHealth Systems™ - 62 E 300 North, Spanish Fork, UT 84660 - Phone 801-770-4203 (9-5 Mountain) - Fax (801) 770-4428

Copyright © 2009-2019 Find A Code, LLC - CPT® copyright American Medical Association