Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

HIPAA Compliance Consulting and Management Services

374 views

Published on

Through an annual Software-as-a-Service (SaaS) subscription, we offer a secure web-based architecture Cloud application service, using a consultative methodology approach, working autonomously on-site and or remotely with c-level management or your senior staff, including the designated HIPAA Security or Compliance officer, and others as needed, to identify and evaluate security and privacy risk, as well as develop and execute the internal compliance audits functions for the organization. These frameworks may include ISO 2700xx, SOX, PCI-DSS, HIPAA, HITECH, GLBA, COBIT, and FISMA .

Published in: Business, Technology
  • Be the first to comment

  • Be the first to like this

HIPAA Compliance Consulting and Management Services

  1. 1. HIPAA/HITECH SOLUTION FOR SMALL MEDICAL PRACTICES AND BUSINESS ASSOCIATES Presented by: ITS Alliances, Inc. Aegify SecureGRC TM
  2. 2. 2 HITECH has new CRIMINAL liabilities WHAT HAS CHANGED? ITS Alliances, Inc. - www.itsalliances.com - Proprietary and Confidential
  3. 3. Expanded the scope of HIPAA privacy, security and enforcement standards to subject business associates and their subcontractors to the same administrative, technical and physical security safeguard requirements as covered entities, including civil and criminal sanctions for violating the health information privacy of individuals. WHAT HAS CHANGED? ITS Alliances, Inc. - Proprietary and Confidential - www.itsalliances.com
  4. 4. DON'T THINK IT CAN HAPPEN TO YOU?  What if a employee steals records? 48%  What if a laptop is lost or stolen? 26%  What if a BA steals data? 20%  What if you lose a Blackberry, IPAD or other portable data storage? 14%  What if some one steals my records after I dispose of them? 6%  What if some one hacks into your network? 4%  What if?  What if? It happens EVERY day. Of the incidents reported , these were the % of cause. ITS Alliances, Inc. - Proprietary and Confidential - www.itsalliances.com
  5. 5. 5 “Accordingly, we recommend that physicians (and their business associates) plan immediately to comply with these new breach notification requirements” BREACH RULES ITS Alliances, Inc. - Proprietary and Confidential - www.itsalliances.com
  6. 6. 6 "Administrative safeguards" focus on workforce training and contingency planning (45 CFR §164.308). The cornerstones, however, are risk analysis and risk management—both "required." Critical and thorough risk analysis must take place before any attempt at regulatory compliance is made. ITS Alliances, Inc. - Proprietary and Confidential - www.itsalliances.com
  7. 7. Tough getting started: Where to begin?  Most smart CE’s and BA’s WANT to be in compliance but don’t know where to start. 7 WHAT IS SO HARD ABOUT BECOMING COMPLIANT? ITS Alliances, Inc. - Proprietary and Confidential - www.itsalliances.com
  8. 8. WEB based self assessment for HIPAA/HITECH and Security Practices 8 SecureGRC HIPAA/HITECH ITS Alliances, Inc. - Proprietary and Confidential - www.itsalliances.com
  9. 9. BUILT IN DOCUMENT REPOSITORY 9 ITS Alliances, Inc. - Proprietary and Confidential - www.itsalliances.com
  10. 10. HELP IS ALWAYS NEARBY
  11. 11. HELP IS ALWAYS NEARBY
  12. 12. HELP IS ALWAYS NEARBY
  13. 13. 13 EVERY QUESTIONS HAS A RISK RATING ITS Alliances, Inc. - Proprietary and Confidential - www.itsalliances.com
  14. 14. 14 SIMPLE, BUT EXTENSIVE FILTERING ITS Alliances, Inc. - Proprietary and Confidential - www.itsalliances.com
  15. 15. SUBMIT FOR REVIEW 15ITS Alliances, Inc. - Proprietary and Confidential - www.itsalliances.com
  16. 16. Real Time Status 16 SecureGRC SB HIPAA ITS Alliances, Inc. - Proprietary and Confidential - www.itsalliances.com
  17. 17. SIMPLE REPORTS, SORTED BY HIGHEST RISK ITS Alliances, Inc. - Proprietary and Confidential - www.itsalliances.com
  18. 18. HIPAA REPORT ON COMPLIANCE (HROC) 18 CE or BA ITS Alliances, Inc. - Proprietary and Confidential - www.itsalliances.com
  19. 19. SECUREGRC SB HIPAA/HITECH SELF ASSESSMENT 1. Simple 2. Inexpensive 3. Meets and exceeds HIPAA and HITECH privacy and security requirements for SB 4. Meets and exceeds Section 15 of Meaningful Use 1 5. Central document repository with automated audit controls. 6. Library of sample policies, procedures and forms. 7. Extensive help and best practices 8. Requires minimal labor on your part 9. Helps manage your BA’s (Vendor Management) 10. HIPAA Report on Compliance (HROC) ITS Alliances, Inc. - Proprietary and Confidential - www.itsalliances.com

×