"> HIPAA/HITECH – Drummond Group

HIPAA/HITECH

  • DATA SHEET

    HIPAA Data Sheet

    CASE STUDY

    A regional hospital mitigates risks with Drummond

As a covered entity or service provider, including telemedicine providers, you must comply with the risk analysis requirement mandated by the HIPAA Security Rule, MACRA, Meaningful Use and other regulations.

Drummond can help you achieve HIPAA compliance as an independent third-party assessor and a recognized leader in Healthcare and HIPAA compliance – with over 200 HIPAA assessments completed to date.

For organizations and executives who desire a comprehensive evaluation of their risks and exposures across technology and operations, Drummond offers a Comprehensive Healthcare Risk Assessment (CHRA). With a CHRA from Drummond, we summarize all your existing controls and provide recommendations for remediating any deficiencies.

Increase trust, gain expertise and experience our proven approach and attention to detail with a security first approach to HIPAA compliance and these services:

Small Practice Healthcare Risk Assessment

Drummond leverages the requirements set forth in the HIPAA Security Rule in conducting information security risk assessments, as well as those processes found in NIST 800-30. This assessment focuses on the highest-risk areas to healthcare organizations based on industry input and breach data analysis. By focusing on the highest risks, healthcare organizations can quickly identify gaps and more effectively implement controls to mitigate the likelihood and impact of a breach of PHI.

HIPAA Gap Assessment

Drummond’s HIPAA Assessment helps organizations assess their current security control implementations against the HIPAA Security Rule to identify potential gaps in compliance with respect to the confidentiality, integrity, and availability of protected health information (PHI). For this assessment, HIPAA requirements are focused on Administrative Safeguards, Physical Safeguards, Technical Safeguards, Organization Requirements, Policies and Procedures, and Documentation Requirements. The report details the information gathered from Drummond’s review of the information technology environment, identifies gaps in the areas assessed, and provides recommendations for improvement.

Policy and Procedure Review

Drummond can assist your organization by providing a complete review of HIPAA policies and procedures to ensure you are compliant with the Security Rule and identify any potential gaps in compliance. Additionally, Drummond offers a Policy and Procedure template that we can assist with getting implemented in your operating environment to help ensure HIPAA compliance is met.

HIPAA Subject Matter Expert (SME)

Drummond can assist your organization by providing a complete review of HIPAA policies and procedures to ensure you are compliant with the Security Rule and identify any potential gaps in compliance. Additionally, Drummond offers a Policy and Procedure template that we can assist with getting implemented in your operating environment to help ensure that HIPAA compliance is met.

For more information about our CHRA services

Why Choose Drummond?

Stronger Together

Our industry-experienced healthcare compliance team will give you an objective view of potential risks and vulnerabilities to patient information, and we will ensure that your security, privacy, and compliance goals align with business goals and ultimately mitigate risk.

Top HIPAA/HITECH Assessor

We have performed 200+ assessments, which makes us a top performer in the industry. Our experience lessens the time and money you must expend for certification. All of our HIPAA and HITECH assessors are HITRUST certified, so they can gather evidence once, and help your company build the processes necessary to get from HIPAA to HITRUST.

Proven Methodology

We expedite the pre-assessment phase and evidence collection process to get your organization HIPAA/HITECH Certified as quickly and inexpensively as possible. Our clients have told us that they’ve saved as much as 50% in labor costs using our automation and engagement methodology.

No Jerks Policy

Let’s face it, auditors can be pretty dry. Why not work with people that are personable? You are going to be working with your HIPAA/HITECH Assessor for quite a while. Our people are pleasant to work with and have a good sense of humor; just ask our references.

The People of Drummond are ready to help you today.

Privacy Preferences

When you visit our website, it may store information through your browser from specific services, usually in the form of cookies. Here you can change your Privacy preferences. It is worth noting that blocking some types of cookies may impact your experience on our website and the services we are able to offer.

Click to enable/disable Google Analytics tracking code.
Click to enable/disable Google Fonts.
Click to enable/disable Google Maps.
Click to enable/disable video embeds.
Our website uses cookies, some from third-party services. Define your Privacy Preferences and/or agree to our use of cookies.