To assist providers with the Health Insurance Portability and Accountability Act (HIPAA) Security Rule compliance, HHS has announced the release of a new security risk assessment (SRA) tool.
In a press release dated March 28, 2014, HHS states that this SRA tool will “help guide health care providers in small to medium sized offices conduct risk assessments of their organizations is now available from HHS.”
ONC is requesting that users provide feedback on the tool; comments will be accepted until June 2, 2014.
The result of a collaboration between the Office of the National Coordinator for Health Information Technology (ONC) and Office for Civil Rights (OCR), the tool “is designed to help practices conduct and document a risk assessment” and can be downloaded at www.HealthIT.gov/security-risk-assessment. This tool also produces a report that can be provided to auditors.