HIPAA Security Rule Test

June 2, 2005

15-Second Security Rule Physical

  • Has the HIPAA Security Officer been “officially” assigned?
  • Has your Security Rule Policy Manual been published?
  • Has your Security Rule Procedures Manual been published?
  • Has a facility census been conducted?
  • Has a workforce census been conducted?
  • Has a non-workforce (business associate) census been conducted?
  • Has a hardware inventory been completed?
  • Has a media inventory been completed?
  • Have risks and vulnerabilities to ePHI been identified?
  • Have the risk levels for specific threats been evaluated?
  • Have countermeasures been identified and prioritized?
  • Has a formal Security Rule Compliance Plan been published?

Previous post:

Next post: