ONC Focuses on HIPAA Security With Release of Security Risk Assessment (SRA) Tool
April 3, 2014
Health care providers received a gift from the U.S. Department of Health and Human Services (HHS), Office of the National Coordinator for Health Information Technology (ONC) last week. On March 28, 2014, ONC, the HHS agency driving federal efforts on health information technology, released a new Security Risk Assessment (SRA) Tool to assist health care providers with completion of the risk assessment required under the HIPAA Security Rule. Although HHS indicated that the SRA Tool is designed to assist small-to medium-sized providers, the SRA Tool also contains guidance that assists larger providers and business associates with completion of the required assessment.