Avoid oversights in HIPAA risk management

Since HIPAA regulations first came about in 1996, organizations have looked for ways to analyze and manage risk within this complex framework. Although guided by the HIPAA Security Rule as well as additional guidance from the U.S. Department of Health and Human Services (HHS) and Office for Civil Rights (OCR), healthcare entities and business associates still struggle with the cybersecurity risk analysis component.

By admin