top of page

Healthcare Security Risk Assessment



WHAT IS IT?  A simple solution to help organizations complete the requirement for a Risk Analysis in an easy to understand and cost effective manner. 


WHY DO I NEED THIS? The HIPAA Security Rule has required that all covered entities conduct a Security Risk Analysis and the HITECH Act also requires audits of covered entity and business associate compliance with the HIPAA Privacy, Security, and Breach Notification Rules.

Please reload


Whether you are familiar with e-PHI and have a modest knowledge level of security or you want someone to walk through the process from start to finish, we provide a cost effective and easy to understand full service solution.  Our Risk Assessment Questionnaire will guide you through the information gathering phase.  In addition, you will complete the Privacy and Security Physical Walkthrough Questionnaire for each of your physical locations.  


Once completed, CS Eye will conduct a thorough analysis of the information provided and deliver your results along with a plan for mitigation.   


Excerpt from an actual Meaningful Use Attestation Audit Request:

3. Core #15 Protect Electronic Health Information:

Provide proof that a security risk analysis of the Certified EHR Technology was performed prior to the end of the reporting period (i.e. report which documents the procedures performed during the analysis and the results of the analysis.) If deficiencies are identified in this analysis, please supply the implementation plan; this should include completion dates.

Click PDF File to read the Risk Assessment White Paper
bottom of page