ISO 27001 Risk Assessment

Background

Our client is one of the three premier medical clinics in the World providing the highest quality cancer and cardiac treatment. U.S. News and World Report ranks Client 4th overall among the 6,000 hospitals in the United States for 2005. In addition, Client's Heart Center is ranked 1st in cardiac care in the US.

Consultant security resources have been working with Client Foundation (CCF) information security staff on HIPAA risk assessment and compliance issues for the past two years.

The Engagement

HotSkills consultants worked closely with Client staff to develop and implement an information security risk assessment project to address the organization and the federally mandated HIPAA requirement for an information security risk assessment.

The Approach

Principal consultants met with CCF's security management staff to determine the scope of the work that would be needed to be addressed across this very large and diverse healthcare organization. This resulted in a two week scoping engagement that provided CCF with an accurate and achievable statement of work for an institution-wide HIPAA risk assessment based on a foundation of the ISO 27002 information security standard.

The Result

The risk assessment project resulted in a Risk Assessment tool that not only identified and quantified risks to electronic protected health information, but also provided a model for ongoing re-assessment and evaluation of progress toward improved information security year-after-year.

info@hotskills-inc.com (800) 507-4517		© Hotskills 2005-2008 All Rights Reserved. Privacy Policy				4801 Nicollet Ave S, Suite A Minneapolis, MN 55419
Site Map		Services	Industries	About Us		Contact