ApproachSolutionsResultsTeamInsightsCareers
Contact
Contact
Solutions

HIPAA Security Risk Analysis

A security risk analysis (SRA) helps ensure an organization complies with HIPAA’s safeguards and reveals areas where your organization’s ePHI could be at risk.

Contact Us

The Health Insurance Portability and Accountability Act (HIPAA) security rule requires that covered entities conduct an accurate and thorough assessment of risks and vulnerabilities to the confidentiality, integrity, and availability of electronic patient health information (ePHI). A security risk analysis (SRA) helps to ensure an organization is compliant with HIPAA’s administrative, physical, and technical safeguards. An SRA also helps reveal areas where an organization’s ePHI could be at risk.

Completing an SRA and correcting any deficiencies are requirements for many incentive programs such as the Quality Payment Program and the Promoting Interoperability Program (formerly Meaningful Use). Additionally, in May of 2021, The Office of the Inspector General (OIG) announced it would audit the U.S. Department of Health and Human Services (HHS) to determine whether HHS’s Office of Civil Rights (OCR) has performed periodic audits of hospitals to assess compliance with HIPAA Security, Privacy, and Breach Notification rules and determine whether these audits effectively assessed ePHI protections.

Our Approach

  • Administrative, physical, and technical assessment
  • Utilization of the guidelines in the National Institute of Standard and Technology (“NIST”) SP 800-30
  • Conduct an accurate and thorough analysis of the potential risks and vulnerabilities
  • A basic set of customizable security policies
  • Vulnerability Scan
  • Phishing Campaign
  • Remediation list with recommendations
  • Business Associate Agreement review and log
  • Remediation assistance provided upon request

Not all breaches are preventable, but the best first step a facility can take is to take a deep dive into its security posture and self-identify where they are vulnerable before that vulnerability is exploited.

Related Industry Insights & Resources

View All Insights

Announcing our New Book on Private Equity and Healthcare

Press Release: Coker Team Authors New Book on Private Equity and Healthcare

Read More
Press Release: Coker Team Authors New Book on Private Equity and Healthcare

Planning and Managing Provider Compensation: A Checklist-Based Approach

Streamline provider compensation management with actionable steps to improve compliance and transparency.

Read More
Streamline provider compensation management with actionable steps to improve compliance and transparency.

Healthcare Consulting Firm, Coker, Announces Acquisition of NorthGauge Healthcare Advisors

Read More

Leveraging Medicare Annual Wellness Visits for Chronic Disease Identification and Prevention

Tap into the Power of Medicare AWVs for Early Detection of Chronic Illness

Read More
Tap into the Power of Medicare AWVs for Early Detection of Chronic Illness

Understanding Medicare Preventive Visits: Key Differences Between IPPE and AWV Services

Discover how understanding these distinctions can enhance patient care and ensure compliance.

Read More
Discover how understanding these distinctions can enhance patient care and ensure compliance.

CrowdStrike Outage Impacts US Healthcare: Protecting Healthcare Organizations

Protect Your Healthcare Organization from IT Disruptions: Learn from the CrowdStrike Outage

Read More
Protect Your Healthcare Organization from IT Disruptions: Learn from the CrowdStrike Outage

Navigating the Digital Landscape: Hospital Marketers Win in the Latest Ruling on HHS Online Tracking and HIPAA

Learn how the recent court ruling empowers hospital marketers to use web technologies without fear of non-compliance and how to stay vigilant as the case progresses.

Read More
Learn how the recent court ruling empowers hospital marketers to use web technologies without fear of non-compliance and how to stay vigilant as the case progresses.

Trinity Hunt Partners Establishes Healthcare Advisory Platform with Investment in Coker

Trinity Hunt will work closely with Coker’s skilled team to facilitate expansion.

Read More
Trinity Hunt will work closely with Coker’s skilled team to facilitate expansion.

Is Your Risk Analysis Thorough and Accurate?

A gap analysis does not provide a comprehensive view of security processes.

Read More
A gap analysis does not provide a comprehensive view of security processes.

Is Your Telehealth Solution HIPAA Compliant?

Telehealth enforcement discretion ends May 11, 2023

Read More
Telehealth enforcement discretion ends May 11, 2023

CMS Issues 2023 Physician Fee Schedule Final Rule

The conversion factor will decrease by 4.5%.

Read More
The conversion factor will decrease by 4.5%.

The Office of Inspector General to Audit the Effectiveness of the Health and Human Services Office for Civil Rights

OIG to assess compliance with HIPAA security requirements.

Read More
OIG to assess compliance with HIPAA security requirements.

American Medical Association Releases 2023 E/M Updates

These changes will take effect on January 1, 2023.

Read More
These changes will take effect on January 1, 2023.

Major Changes to Split/Shared Billing Affect Advanced Practice Providers and Physicians

6 key effects of the split/shared billing changes.

Read More
6 key effects of the split/shared billing changes.

Why is a Fair Market Value/Commercial Reasonableness Opinion Important for Value-Based Enterprises?

FMV/CR documentation ensures market and economic reasonability.

Read More
FMV/CR documentation ensures market and economic reasonability.

8 Information Blocking Exceptions You Need to Know

It is not considered Information Blocking if these exceptions are met.

Read More
It is not considered Information Blocking if these exceptions are met.

What is Compliance Program Effectiveness?

Boards must retain a compliance expert to perform an effectiveness review.

Read More
Boards must retain a compliance expert to perform an effectiveness review.

The Ugly Truth About the New 2021 E/M Changes

2021 Evaluation and Management (E/M) guidelines is one of the biggest changes to physician billing and coding.

Read More
2021 Evaluation and Management (E/M) guidelines is one of the biggest changes to physician billing and coding.

2021 Offers New Opportunities Amid Healthcare Regulation Changes

Read More

5 Mistakes Covered Entities and Business Associates Made During a Security Risk Analysis

Read More

Let’s Talk about Why Qualitative Information Matters in Your Physician Needs Assessment

The medical community's input and health system leadership can be vital to a comprehensive physician needs assessment.

Read More
The medical community's input and health system leadership can be vital to a comprehensive physician needs assessment.

HHS Announces Changes to the HIPAA Privacy Rule

Read More

Top Five Trends in Healthcare for 2021

Read More

2021 E/M Coding Changes: What Healthcare Professionals Need to Know

Read More

COVID-19 Pandemic Exposes Vulnerabilities in Healthcare Organizations (Part 3)

Read More

COVID-19 Pandemic Exposes Vulnerabilities in Healthcare Organizations (Part 2)

Read More

The Keyword for Hospitals: Track Documentation of Physician Community Need Before Recruiting Physicians

Read More

COVID-19 Pandemic Exposes Vulnerabilities in Healthcare Organizations (Part 1)

Read More

Establishing Objective Evidence for Physician Needs Assessments

Read More

Information Blocking Compliance: What do Healthcare Providers Need to Know?

Read More

Should You Use a Non-Medical Grade Telemedicine Platform?

Read More

Healthcare and the Millennials

Read More

Case Study: Leveraging Technology During a Pandemic

Read More

Do Hospitals that Employ their Physicians Need a Community Need Assessment?

Read More

Navigating the New Normal of a Post-Pandemic World

Read More

Post-Pandemic Crisis Affiliation: Which Way is Up?

Read More

ONC Temporarily Relaxes Compliance Deadlines Related to the Cures Act

Read More

COVID-19 Telehealth Privacy and Security Concerns

Read More

Coker Group Telehealth Survey

Read More

Cyber Criminals are Targeting Telemedicine Visits

Read More

Key Issues and Guidance for Hospitals and Medical Groups during the COVID 19 Pandemic

Read More

COVID-19 FRAUD ALERT

Read More

Responsive Compensation Arrangements to Battle COVID-19

Read More

Provider Compensation Management: Solving the Compensation Conundrum

Read More

Cybersecurity Tips

Read More

What Does It Mean for a Compliance Program to Be Effective?

Read More

Identifying Embezzlement Opportunities in a Medical Practice

Read More

Does the Corporation’s Compliance Program Work in Practice?

Read More

Is the [Compliance] Program Being Applied Earnestly and in Good Faith?

Read More

Is Your Corporate Compliance Program Well-Designed?

Read More

Engage an Expert Witness to Build a Sound Defense in Healthcare Legal Cases

Read More

Using Market Data to Establish Sustainable Physician Compensation Models

Read More

Recognizing and Mitigating Key Areas of Risk

Read More

Understanding and Preventing Physician Burnout

Read More

EHR Documentation Integrity Risks: Ten Ways to Stay Compliant

Read More

The Aging Physician Workforce

Read More

Is there a Looming Physician Shortage and What does it Mean?

Read More

Building Medical Staff Buy-In when Conducting a Physician Community Needs Assessment

Read More

Compliance Risk Mitigation in Healthcare Mergers & Acquisitions

Read More

Do Qualitative Factors Matter in Determining Physician Need?

Read More

Physician Compensation Plan Design: The Basics Make a Difference

Read More

Pursuing a Comprehensive Compensation Plan for Your Executive Leadership Team

Read More

Best Practices for Developing Employed Provider Compensation Plans

Read More

Burning Platforms: Common Characteristics and Considerations for Employed Provider Network (EPN) Turnarounds

Read More

Clinical Integration: The First Step in Moving Toward Value-Based Reimbursement

Read More

Five Tips to Keep Your Data Safe

Read More

Practice Management Basics: A Healthy Revenue Cycle Begins Up Front

Read More

Front-End Patient Collections: Where the Rubber Meets the Road

Read More

Physician Compensation Governance: Building a Good Foundation

Read More

Mitigating Risk when Migrating from one EMR to Another

Read More

Relationship Status with Productivity-Based Compensation: It's Complicated

Read More

Coding Compliance and WRVUS: What Lurks Beneath the Surface?

Read More

Conflict Management and Successful Leadership

Read More

Smoothing the Rough Spots in Patient Flow in Outpatient Practices

Read More

Is Information Technology a Competitive Necessity or a Competitive Advantage?

Read More

Cybersecurity Lessons from 2016 and Trends for 2017

Read More

A Reflection on Coding and Compliance Changes

Read More

wRVUS: Are yours accurate?

Read More

A Strategic Systematic Approach to Community Health Needs Assessment (CHNA): A Living Plan for Your Community's Health Improvement

Read More

Too Little? Not Too Late

Read More

Bridging the Gap from Fee-For-Service to Fee-For-Value (Without Losing Your Mind)

Read More

Mitigating Organizational Stress

Read More

Can Hospitals Compete with Private Equity in Attracting Physician Group Deals?

Read More

Artificial Intelligence (AI) in Healthcare: How is it Changing Healthcare and What are the Ramifications?

Read More

The Next Stage of Evolution in Physician Practice Transactions: Can hospitals compete with private equity in attracting physician group deals?

Read More

EHR-to-EHR Conversions: There’s a Lot to Know!

Read More

Provider Compensation in Rural Markets: Top 5 Lessons Learned

Read More

In a World of Increasing Vulnerability to Cyber Attacks: Are You Protected?

Read More

Physician Community Need Assessments in the Age of Employment

Read More

3 Critical Elements for Building an Effective Human Firewall

Read More

Coker Group has added Brandt Jewell as a Senior Vice President to lead their Physician Services Group

Read More

The Intersection of Compliance and Fair Market Value: Are You Sure Your Arrangements Coincide?

Read More

Assess the Health of Your Practice Operations

Read More

Key Points About Risk Adjustment of Quality and Cost Data

Read More

Is Your Healthcare IT Up To Par? Why IT Assessments are Beneficial

Read More

Comprehensive Executive Search Should Include Leadership Cultural Assessment

Read More

Healthcare Cybersecurity Threats and Trends for 2018

Read More

Fair Market Value: Assessing Compensation Arrangements in the Healthcare Industry

Read More

Understanding and Negotiating IT Vendor Contracts: Three Tips for Protecting Your Organization

Read More

Healthcare Cybersecurity – Where are You Vulnerable?

Read More

Positive outcomes are possible for you and your patients.

We approach every engagement with a results-driven mindset, leveraging our deep industry expertise and data-driven insights to develop strategies that drive meaningful, measurable improvements in performance.
View All Results
No items found.
Solutions We Offer
We partner with clients to navigate the dynamic challenges of managing a high-performing physician enterprise.

Performance Transformation

View Details

Transaction Advisory

View Details

Compliance Services

View Details
ApproachSolutionsResultsTeamInsightsCareersContact
LinkedInX.com (Twitter)InstagramFacebookYouTube
2400 Lakeview Parkway, Suite 400
Alpharetta, GA 30009
750 Old Hickory Blvd, Suite 110-1
Brentwood, TN 37027
    © 2024 Coker Group Holdings, LLC, d.b.a. Coker
    Back to top ↑