An updated Security Risk Assessment Tool aims to help providers and business associates identify risks to electronic protected heath information.
The tool, created by the HHS Office of the National Coordinator for Health Information technology and the Office for Civil Rights, is designed for practices with up to 10 providers, along with their business associates, to understand their security posture and prevent data breaches.
Using the tool, providers and business associates can conduct an enterprisewide risk analysis covering the confidentiality, integrity and availability of electronic health information across all lines of business, in all facilities and in all locations, according to the agencies.
Also See: Lack of security risk assessment could trim Medicare payments
Features in the tool include an enhanced user interface, custom assessment logic (intelligence added by the user and added into the design), a progress tracker, improved threats and vulnerability ratings and business associate and asset tracking.
The tool also has question branching logic that changes what question a respondent sees next based on how they answered…