A metropolitan health plan needed to reassess its compliance with the HIPAA Security Rule and provide their executive team with an understanding of the current regulatory challenges and information security threats faced by their organization.
TrustPoint utilized our methodology to provide a comprehensive assessment of the organization’s policies, procedures, security governance, and controls in place to protect member health information. We documented, in detail, the organization’s current state of compliance and ability to meet the expectations of federal and state regulators if audited.
We provided their executive team with a clear, unbiased understanding of their level of compliance with the Security Rule requirements, a heightened understanding of the information security threats facing their industry, and practical recommendations to rapidly improve their security posture. We continue to advise and assist this client as their partner to help them maintain compliance and safeguard their members’ personal information.