The Cutting Edge of Medical Technology Content, Community & Collaboration
Risk Analysis and Risk Management (RA-RM) are OCR’s top enforcement priority and the basis for every HIPAA Compliance program.
But HIPAA Rules don't explain how to do RA-RM - they just say it's required! OCR, in response to questions and criticism offers only brief guidance telling Covered Entities and Business Associates to follow RA-RM procedures created by the NIST (National Institute of Standards and Technology). NIST RA-RM procedures are thorough although published in complex technical manuals.
This webinar explains the NIST/HIPAA RA-RM procedures in easy to follow steps and correct terms - Risk, Threat, Vulnerability, etc. It breaks 3 basic parts: Risk Analysis, Risk Management Actions and documented Risk Management Plan into simple steps demonstrated by screen shots of interactive forms guiding any user through a HIPAA compliant RA-RM whether they have a technical background or not.