Explanations and tools that healthcare entities may use to assist them in proactively addressing the potential information security risks they may identify in their risk assessment processes.
Security and Privacy Controls for Federal Information Systems and Organizations - NIST 800-53 (Rev.4)
Risk Mitigation Strategies and Risk Mitigation Plan
The Risk IT Framework (Registration Required)
Reassessing Your Security Practices in a Health IT Environment: A Guide for Small Health Care Practices