This webinar explains the NIST/HIPAA RA-RM procedures in easy to follow steps and correct terms – Risk, Threat, Vulnerability, etc. It breaks 3 basic parts: Risk Analysis, Risk Management Actions, and documented Risk Management Plan into simple steps demonstrated by screenshots of interactive forms guiding any user through a HIPAA compliant RA-RM whether they have a technical background or not.
This webinar turns HIPAA RA-RM mystery into mastery. You’ll learn how to perform the steps and create the documentation you need to pass an OCR audit. Most important, however, you’ll see how to identify and manage Risks to the Privacy and Security of protected health information (PHI) maintained and transmitted in any form that seriously endangers your organization’s well-being.
You’ll see HIPAA RA-RM is easy to do step-by-step – when you know the steps.
May 27, 2021
Paul R. Hales, Esq.
December 2, 2020
Risk Analysis and Risk Management (RA-RM) are OCR’s top enforcement priority and the basis for every HIPAA Compliance program. But HIPAA Rules don’t explain how to do RA-RM – they just say it’s required! OCR, in response to questions and criticism, offers only brief guidance telling Covered Entities and Business Associates to follow RA-RM procedures created by the NIST (National Institute of Standards and Technology). NIST RA-RM procedures are thorough although published in complex technical manuals.