Enterprise Risk

HIPAA (Health Insurance Portability Accountability Act) + HITRUST

HIPAA (Health Insurance Portability Accountability Act) + HITRUST

As healthcare organizations emerge from a period of sustained challenges, they must renew and maintain their focus on data privacy and security. The sheer amount of information shared between healthcare organizations, their consumers and related providers compounds risk with every transaction. Smith and Howard’s enterprise risk security experts, supported by the substantial resources of our other internal advisors and accountants, provide the counsel, tools and ongoing support organizations likes yours need to protect your patients’ data while focusing on your mission.

HIPAA-experienced compliance professionals on our team lead you through the complexities of compliance. They partner with others within Smith and Howard to ensure every “i” is dotted and “t” is crossed in your organization’s quest to deploy privacy practices that ensure compliance.

HITRUST assessments performed by a Smith and Howard HITRUST authorized CSF assessor provide a process to implement security measures and ensure the IT structures comply with laws and regulations.

We have an internal team of HITRUST practitioners who are certified to provide HITRUST CSF assessments. Our team can help your organization with following:

  • CSF Comprehensive Security & Privacy Assessment (with variations on this combination depending on your needs)
  • HITRUST CSF Validated or Self-Assessment
  • NIST Cybersecurity Assessment
  • SOC 2 + HITRUST CSF Certification