top of page

New HIPAA Security Risk Assessment Tool Helps Providers Safeguard PHI

Protect Your Patients' PHI with the New HIPAA Security Risk Assessment Tool

How the New HIPAA Risk Assessment Tool Can Help Providers Stay Ahead of the Curve


The Health Insurance Portability and Accountability Act (HIPAA) Security Rule requires covered entities and their business associates to conduct a risk assessment of their healthcare organization's electronic protected health information (ePHI). A risk assessment helps organizations identify and mitigate the risks of unauthorized access, use, disclosure, modification, or destruction of ePHI.

To help providers comply with this requirement, the Office of the National Coordinator for Health Information Technology (ONC) has developed a new Security Risk Assessment (SRA) Tool. This tool is a free, downloadable application that walks users through the risk assessment process using a simple, wizard-based approach.


The SRA Tool takes into account a variety of factors, including the organization's size, type of services provided, and IT infrastructure. It also considers the latest HIPAA Security Rule guidance from the U.S. Department of Health and Human Services (HHS).


Once the user has completed the assessment, the SRA Tool generates a report that identifies the organization's security risks and provides recommendations for mitigation. Users can save and print the report for their records.


The new SRA Tool is a valuable resource for providers of all sizes. It is easy to use and provides comprehensive guidance on the HIPAA Security Rule risk assessment process.


Here are some of the benefits of using the new SRA Tool:

  • It is easy to use and understand, even for providers with limited IT experience.

  • It is comprehensive and covers all aspects of the HIPAA Security Rule risk assessment process.

  • It is up-to-date with the latest HIPAA Security Rule guidance from HHS.

  • It is free to download and use.

To use the new SRA Tool, simply download it from the HealthIT.gov website and install it on your computer. Once the tool is installed, launch it and follow the prompts. There's also a user guide available to download here.


The tool will walk you through a series of questions about your organization's size, type of services provided, IT infrastructure, and security practices. Based on your answers, the tool will generate a report that identifies your organization's security risks and provides recommendations for mitigation.


You can save and print the report for your records. You should also review the report with your staff and make any necessary changes to your organization's security practices.


Xcelerant Marketing Solution is excited to announce our new strategic partnership with a HITRUST certified fulfillment supercenter. This partnership brings together two industry leaders to help healthcare organizations of all sizes meet their HIPAA compliance requirements.


Now, through our new partnership, you can also leverage HITRUST certified fulfillment services. This means that you can be confident that your PHI is being handled and stored in a secure and compliant manner.


To learn more about our new capabilities and our strategic partnership, contact us today.


Non-Affiliation Disclaimer

Any product names, logos, brands, and other trademarks or images featured or referred to within the Xcelerantmarketing.com website and/or on any social media forum are the property of their respective trademark holders.  These trademark holders are not affiliated with Xcelerant Marketing Solution or it's website.  These trademark holders do not sponsor or endorse Xcelerant Marketing Solutions or any of it's products or comments.

Further, Xcelerant Marketing Solution declares no affiliation, sponsorship, nor any partnerships with any registered trademarks unless otherwise stated.

Should you have any questions or concerns please contact Xcelerant Marketing Solution at info@xcelerantmarketing.com

bottom of page