Looking for an easy way to complete a HIPAA Security Risk Assessment? 
The Office of the National Coordinator for Health Information Technology (ONC) has created a software application designed to help small to medium sized practices evaluate their HIPAA security risk. The Security Risk Assessment Tool is the ONC’s first foray into app development, and it is available in the Apple App Store for iOS devices (iPhone and iPad). There is also a Windows version available for use on PCs. The application presents the user with a series of 156 yes or no questions that cover content contained the HIPAA Security Rule. The questions cover the following:
The Office of the National Coordinator for Health Information Technology (ONC) has created a software application designed to help small to medium sized practices evaluate their HIPAA security risk. The Security Risk Assessment Tool is the ONC’s first foray into app development, and it is available in the Apple App Store for iOS devices (iPhone and iPad). There is also a Windows version available for use on PCs. The application presents the user with a series of 156 yes or no questions that cover content contained the HIPAA Security Rule. The questions cover the following:
- Basic security practices (defining and managing access, backups, recoveries, and technical and physical security)
- Risk management (periodic reviews and evaluations, such as continuous monitoring)
- Personnel issues (access to information, onboarding, and release of staff)
Based on the users’ responses, the application provides recommendations for ways to reduce HIPAA risk. The tool’s user guide specifically states that the app is not meant to be a compliance tool and does not produce a statement of compliance. It’s also not going to win any awards for design. However, it is a helpful tool that accomplishes its goal, which is to assist healthcare practices in performing and documenting a Security Risk Assessment.
