Millennial Pocket
  • Home
  • About
  • Banking
  • Financial Banking
  • Forex
  • Contact Us
No Result
View All Result
  • Home
  • About
  • Banking
  • Financial Banking
  • Forex
  • Contact Us
No Result
View All Result
Millennial Pocket
No Result
View All Result
Home Banking

Annual Requirement: Security Risk Assessments (SRA)

eoe86 by eoe86
October 27, 2022
in Banking
0
Annual Requirement: Security Risk Assessments (SRA)
190
SHARES
1.5k
VIEWS
Share on FacebookShare on Twitter

Related articles

Core Code Ambassador Spotlight: Adam Emberton

September 29, 2023
Preparing for End of Year, A Five Part Series: Reviewing Fee Schedules

Preparing for End of Year, A Five Part Series: Reviewing Fee Schedules

September 21, 2023

Physician Payment and Quality Reporting

 

Did you know that the Departments of Health and Human Services require covered entities to perform an annual Security Risk Assessment (SRA) to assess potential threats and vulnerabilities? There are often a lot of misconceptions around SRAs which lead quickly to noncompliance. This article will address some of the most common misconceptions around SRAs.

SRA Facts:

  • If you are a covered entity, you are required to perform this assessment every year.
  • This requirement is not satisfied merely by having a certified EHR
  • Failure to comply can result in fines or loss of incentive payments
  • Outsourcing an SRA is not required, this can be done in-house
  • Relying on the IT support at your EHR vendor to ‘have it covered’ is insufficient
  • You do not need to fully re-evaluate every section of the SRA every year
  • There are free tools available to help you stay in compliance

One of the best things you can do to structure ongoing compliance is to dedicate a timeframe every year to complete your SRA. Ideally, aim to complete your SRA in advance of your annual budgeting processes to leave funds for remediation resources if needed. For example, your assessment may uncover that you need to upgrade software, purchase additional insurance, or add security cameras to the physical location to reduce risks to your facility. The more time you grant yourself between your SRA and your budget, the more time you have to assess risk and financial impact while planning for timely implementation.

SRA Tool:

HHS has a great tool to help walk you through your SRA, you can access that tool here: https://www.healthit.gov/topic/privacy-security-and-hipaa/security-risk-assessment-tool . Most of it is pretty straightforward but in addition the Office of the National Coordinator and the Office of Civil Rights has put together education and training to help guide users on how to use this tool which you can access here: https://www.hhs.gov/hipaa/for-professionals/security/guidance/guidance-risk-analysis/index.html.

The reason for providing both an SRA tool and comprehensive training is two-fold: (1) HHS wants to support organizations in remaining compliance and achieving security success and (2) they want to make sure you have no argument for non-compliance with this requirement.

Performing an SRA gives you valuable information with which you can proactively prepare your organization against threats whether they are physical, administrative, or technological in nature. With the continued rise of cyberattacks and patient information held hostage for ransom, we have to make every effort to protect the integrity and security of our patients’ information. As ransomware attacks and payouts increase, insurance to help cover the losses of ransomware is becoming more challenging to obtain. Performance of annual SRAs with documented progress and risk remediation may help you to secure a cyber insurance policy or at the very least to prove that your facility was not negligent in its responsibility to protect patient information.

The first time you perform an SRA it can seem very daunting, every time you change a significant piece of software (like the Electronic Health Record) and have to do an SRA it can feel overwhelming. Regardless, this process is undoubtedly worth your time. Even if this wasn’t a requirement it would be strongly recommended by industry experts because even a seemingly small breach can create enough strife and financial devastation to force practice closure.

Take the time to do your SRA annually, if you haven’t yet for 2022, now is the time.

Taya Moheister, EMBA, CMPE, CMOM
LinkedIn: https://www.linkedin.com/in/tayamoheiser/
Twitter: https://twitter.com/tayamoheiser

The post Annual Requirement: Security Risk Assessments (SRA) appeared first on Core Bank.

Share76Tweet48

Related Posts

Core Code Ambassador Spotlight: Adam Emberton

by eoe86
September 29, 2023
0

Meet Our Newest Core Code Ambassador! Everyone wants to work somewhere with a great culture, fun environment, and amazing co-workers....

Preparing for End of Year, A Five Part Series: Reviewing Fee Schedules

Preparing for End of Year, A Five Part Series: Reviewing Fee Schedules

by eoe86
September 21, 2023
0

It’s month two of our five-part series preparing for 2024, last month we covered budgeting so now it’s time to...

How Does Bankruptcy Work for Married Couples?  You Can File Together, or Separately.  A Lawyer Can Show You Which Is Best

How Does Bankruptcy Work for Married Couples? You Can File Together, or Separately. A Lawyer Can Show You Which Is Best

by eoe86
September 18, 2023
0

What is the difference between a joint filing or a separate filing for Bankruptcy? If you are married, you have the...

Fall 2023 Housing Market Update

Fall 2023 Housing Market Update

by eoe86
September 15, 2023
0

As many would-be buyers are aware, the market’s performance is being largely controlled by one factor: mortgage rates. During the...

Core Bank Launches CBIG Insurance

Core Bank Launches CBIG Insurance

by eoe86
September 14, 2023
0

Core Bank is excited to introduce a new service with CBIG Insurance. Whether it’s homeowners, auto, renters, term life insurance, or...

Load More
  • Trending
  • Comments
  • Latest
Inclement Weather Update

Inclement Weather Update

September 26, 2022

Wire Fraud

September 7, 2022

Online Banking will be unavailable tonight from 8pm CT/9pm ET – 8:15pm CT/9:15pm ET for routine maintenance. We apologize for any inconvenience.

September 20, 2022
What is Deposit Insurance and What Does it Cover?

What is Deposit Insurance and What Does it Cover?

August 15, 2022

Core Code Ambassador Spotlight: Adam Emberton

0
Core Bank Breaks Ground on New Sarpy County Location

Core Bank Breaks Ground on New Sarpy County Location

0
How to be a Smart Holiday Shopper

How to be a Smart Holiday Shopper

0
Make Saving Part of Your Resolution

Make Saving Part of Your Resolution

0

Core Code Ambassador Spotlight: Adam Emberton

September 29, 2023
Preparing for End of Year, A Five Part Series: Reviewing Fee Schedules

Preparing for End of Year, A Five Part Series: Reviewing Fee Schedules

September 21, 2023
How Does Bankruptcy Work for Married Couples?  You Can File Together, or Separately.  A Lawyer Can Show You Which Is Best

How Does Bankruptcy Work for Married Couples? You Can File Together, or Separately. A Lawyer Can Show You Which Is Best

September 18, 2023
Bank Statements are Critical to Financial Livelihood

Bank Statements are Critical to Financial Livelihood

September 18, 2023

About

Investors aim to make money and build wealth over time through the practise of investing. There are a variety of ways to generate future income, and an investment can be defined as any of these methods.

Recent Post

Core Code Ambassador Spotlight: Adam Emberton

September 29, 2023
Preparing for End of Year, A Five Part Series: Reviewing Fee Schedules

Preparing for End of Year, A Five Part Series: Reviewing Fee Schedules

September 21, 2023

Categories

  • Banking
  • Financial Banking
  • Forex
  • Home
  • About
  • Forex
  • Banking
  • Financial Banking
  • Contact Us
  • Privacy Policy
  • Terms And Conditions

Copyright@2022 All rights reserved by Millennial Pocket

No Result
View All Result
  • Home
  • About
  • Banking
  • Financial Banking
  • Forex
  • Contact Us

Copyright@2022 All rights reserved by Millennial Pocket

Please wait...

Subscribe to our newsletter

Want to be notified when our article is published? Enter your email address and name below to be the first to know.
SIGN UP FOR NEWSLETTER NOW