Security Risk Analysis
What is a Security Risk Analysis & HIPAA Training?
The Security Risk Analysis (SRA) is a Health Information Portability and Accountability Act (HIPAA) requirement and it is also required by CMS for Merit-based Incentive Payment System (MIPS). However, the most important reason to do an SRA is to keep your patient Protected Health Information (PHI) safe. An SRA must be conducted annually to be compliant with HIPAA and CMS requirements.
The information stored in your Electronic Health Record (EHR) is very attractive to hackers. Your EHR has everything hackers need for identity theft all in one place. Steps to ensure the safety of your patient’s PHI include:
A SRA conducted by CQHII does all the above. The SRA Package given at the completion of our assessment includes:
Please contact CQHII if you are interested in securing your network and your PHI.
HIPAA Training Course
The Center of Quality Health IT Improvement (CQHI) HIPAA Training course will give participants the knowledge required to handle patients and Protected Health Information (PHI) in accordance with HIPAA (Health Information Portability and Accountability Act) Privacy and Security directives. HIPAA Training is for anyone that handles PHI and is required every two years to comply with HIPAA directives.
Our course offers several benefits, including:
Discounted Group Rates available, please contact us for more information.
Safety Assurance Factors for EHR Resilience (SAFER) Guides
What are SAFER Guides?
The Office of the National Coordinator for Health Information Technology (ONC) developed the SAFER Guides with the goal of increasing safety and use of EHRs, so CMS Quality Programs included this new measure starting with Calendar year 2022. In addition to the Security Risk Analysis (SRA), SAFER Guides must be completed every year.
If you are a MIPS eligible clinician, you must attest to the High Priority Practices SAFER Guide measure. If you are an eligible hospital, you must attest to all nine SAFER Guides.