Doing HIPPA assessments once a year has worked well for the past 9 years. With the cyber world we live in today, it’s just not enough. It’s time for HIPAA as a Service. I always tell my clients that doing a HIPAA security risk assessment is truly “best practices” for a medical practice. At first, practices were getting them done because they had to for meaningful use. It is core measure 15 and if they did not get the assessment, they were in jeopardy of losing their incentive money. For any clients that were not applying for government money, the did not perform the security assessment because they felt that since they were not applying, they didn’t need to do it. At this point, why wouldn’t you do it, and how secure is your practice?
It’s Time for HIPAA as a Service
HIPAA as a Service is different from running a HIPAA assessment every year. It is run on a quarterly basis and your policies and procedures are updated on a regular basis. Now you don’t have to wait until the end of the year to get your assessment done. It will be done for you all year round. You can also spread out the expense. Instead of paying one large invoice for the assessment, you can spread it out over 12 months. Much easier to handle.
It’s time for HIPAA as a Service. The technology is there and it would be in your favor to take advantage of this service. Don’t you want to know if you network is secure? How about your policies and procedures? Do you have them? Are they updated? Tier3MD has a portal for you to use to update all your HIPAA information.