We tailor every compliance review to our clients’ requirements; however we have a four phase fundamental process that normally meets our clients’ needs and creates an efficient unobtrusive review so you can focus on your business and we can focus on your compliance.
Scope (phase 1): Since Health Insurance Portability and Accountability Act (HIPAA) defines the requirements for compliance, defining the scope of a HIPAA engagement involves understanding how your organization’s operations align with the compliance requirements. In order to successfully scope a HIPAA compliance engagement the following needs to be answered:
Plan (Phase 2): We offer two options for the planning phase of your compliance review.
Fieldwork (Phase 3): Consists of onsite interviews, walkthrough of relevant business processes and testing as it relates to HIPAA. Our auditors have a minimum of five years of experience with the big 4, large consulting firms and smaller boutique firms specializing in information technology advisory services. Due to this we are efficient and understand what is required for each review. Don’t worry, you don’t have to train our auditors, we are qualified at what we sell.
Report (Phase 4): Your HIPAA compliance report is essentially what you pay us for, therefore we make sure that we have quality-written, well-defined reports that are focused on providing your organization with everything needed to understand how you compare to HIPAA standards. We also provide management recommendations and a road map to correct any deficiencies identified. We take pride in delivering quality and timely reports and stand behind everything we issue.
Project Timeline for the Four Phase Compliance Review