HIPAA Security Risk Assessments
When your organization must comply with the US Federal government
“Meaningful Use” reporting requirements you need a HIPAA Security Risk
Assessment. A SRA evaluates covered entities and their business
associates to ensure they are compliant with over 130 HIPAA
administrative, physical, and technical safeguards.
Applying and evaluating HIPAA safeguard standards requires security
professionals with a great understanding of where Information
Technology, HIPAA, and security compliance methods meet.
Our healthcare IT professionals and CPA auditors understand how
long-term care operations work and how they inter-relate with other
vendors. The Broussard Group helps navigate the SRA process and provide
customized comprehensive reports designed to meet HIPAA security
requirements as well as government reporting standards.
Non-profit long-term care facilities and many other healthcare
operators are required to have annual SOC audits for financial reporting
and compliance. Our audit team uses both Certified Public Accountants
and Certified Information Systems Auditors who specialize in long-term
care to perform financial and SOC audits.
First time auditees or organizations undergoing mergers or changes
require preparation before undergoing a formal audit. The Broussard
Group audit readiness engagements help organizations get ready for
audits by providing:
- Business Analysis
- Business Associate Evaluation
- Risk Analysis
- Risk Management Plans
- Policy & Procedure Creation
- Mock Audits
- Post-Audit Remediation
Policy & Procedure Creation
A primary source of audit information is organizational policies and
procedures. Unfortunately, some healthcare organizations lack the
formally drafted documents and policies required for HIPAA compliance or
to be able to successfully complete a SOC audit or financial audit.
This is most often the case for smaller operators or organizations
lacking the time and technical expertise needed to properly evaluate the
requirements for compliance.
Our compliance team assists long-term care operators and healthcare
providers with policy and procedure creation customized to fit their
organization. Through interviews, evaluations, and observations we
gather the information necessary to create custom policies and
procedures to standardize your business practices and to meet your