Comply with the Security Requirements of HIPAA or SOX
Compliance and security are two languages; you need to be able to translate them.
RETIRED CONTENT
Please note that the content on this page is retired. This content is not maintained and may contain information or links that are out of date.A reactive approach to compliance puts your organization at risk through:
- Punitive fines.
- Exposure to personal liability.
- Punitive sanctions.
- Poor perception of IT.
- Mandated changes.
Managing your security compliance properly will result in:
- Compliance requirements for HIPAA and SOX that can be turned into actions that can carried out.
- An understanding of the current state and the gaps needed to close your compliance obligations.
- An overall increase in compliance and decrease in the cost of non-compliance.
Book Your Workshop
Onsite Workshops offer an easy way to accelerate your project. If you are unable to do the project yourself, and a Guided Implementation isn’t enough, we offer low-cost onsite delivery of our Project Workshops. We take you through every phase of your project and ensure that you have a road map in place to complete your project successfully.
Module 1: Make the Case and Assess Your Compliance Current State
The Purpose
- Identify and document your regulatory compliance obligations.
- Make the case for a compliance management program.
- Gain executive buy-in to ensure that you have your compliance program championed.
- Review your current state for meeting HIPAA and SOX compliance.
Key Benefits Achieved
- Identification of the compliance obligations that the organization faces.
- Executive support for compliance management.
- Understanding of the current state of compliance in relation to HIPAA and/or SOX.
| Activities: | Outputs: | |
|---|---|---|
| 1.1 | Identify and document regulatory compliance obligations. |
|
| 1.2 | Gain an executive champion. |
|
| 1.3 | Perform a current compliance state assessment. |
|
Module 2: Determine Your Target State and Perform a Gap Analysis
The Purpose
- Assess organizational friction to compliance.
- Determine desired future state of compliance.
- Identify gaps and initiatives to achieve regulatory compliance.
- Group similar initiatives and align them under the security framework.
Key Benefits Achieved
- Recognized any organizational barriers to compliance.
- Determined the target state of compliance.
- Identified the necessary gap initiatives.
- Grouped similar security projects that are closely aligned.
| Activities: | Outputs: | |
|---|---|---|
| 2.1 | Assess organizational barriers to compliance. |
|
| 2.2 | Identify gaps initiatives. |
|
Module 3: Build a Compliance Roadmap
The Purpose
- Prioritize the implementation of the initiatives.
- Identify dependencies of the initiatives.
- Determine the phases of the initiatives.
- Create a review process and a metrics program.
Key Benefits Achieved
- Prioritized list of initiatives.
- Defined compliance roadmap for the gap initiatives.
- Realized ability to track and review the overall compliance program.
| Activities: | Outputs: | |
|---|---|---|
| 3.1 | Prioritize the initiative implementation. |
|
| 3.2 | Determine the phases of the initiatives. |
|
| 3.3 | Develop a review process. |
|