Trying to do an official certified NIST risk assessment from HIPAA policies written in the past is like translating hieroglyphics into English. The pathway to a Certified NIST Risk Assessment is having NIST policies in place. A NIST policy is one written to address a specific safeguard on the NIST CyberSecurity Framework (CSF).
Posted April 24, 2018 by Jack Anderson
A certified NIST risk assessment is your best proof of HIPAA compliance. Jumpstart delivers a quarterly certified NIST risk assessment.
Posted April 6, 2018 by Jack Anderson
A NIST CSF is a National Institute of Standards and Technology Cyber Security Framework which can deliver an equivalent to "HIPAA Certification". By meeting the standards including periodic risk assessments you can provide proof that you are doing all that is needed to protect PHI.
Posted March 20, 2018 by Jack Anderson
A risk assessment on the NIST CyberSecurity Framework (CSF) is your "certification" of HIPAA compliance. It demonstrates the status of your security and privacy programs to others such as regulators, customers, partners, and shareholders.
Posted March 7, 2018 by Jack Anderson
Audit Finds Millions Paid Inappropriately Due to Lack of a Risk Assessment. Under the HITECH Act meaningful use incentive program, conducting a security risk assessment of protected health information "created or maintained by the certified EHR technology through the implementation of appropriate technical capabilities" is a core requirement.
Posted June 14, 2017 by Jack Anderson