Risk Assessment

Risk Assessment Services

A key requirement of security standards and regulations such as HIPAA, HITECH, PCI DSS, NIST, ISO 27001, and others is that organizations must conduct a comprehensive and thorough assessment of the potential risks and vulnerabilities to the Confidentiality, Integrity, and Availability (CIA) of all PII.

Organizations such as hospitals, health systems, physician practices, payers, dentists, as well as Business Associates must conduct a comprehensive Risk Analysis exercise to meet HIPAA mandates, including HITECH Meaningful Use requirements. Security standards such as ISO 27001 and NIST guidelines require a thorough Risk Analysis.