Please click here if you are not redirected within a few seconds.

Search for:

All

a b c d e f g h i j k l m n o p q r s t u v w x y z

Home
Abbrev
Calculators
Med Terms
Dilutions
Drugs
I.Dx.
Labs
Medical
Finance
Oncology
Renal
RXList
Medline+
GRPH Blog

You are here

Home > Information Security

Information Security

HIPAA for the Clinician, Part 2: The Security Risk Analysis You’re Probably Not Doing Correctly

Compliance
Cybersecurity
HIPAA
Information Security

by Will Evertsen - May 6, 2026 034

HIPAA for the Clinician, Part 2 The Security Risk Analysis You’re Probably Not Doing Correctly Will Evertsen Introduction The questionnaire arrives in your inbox from your EHR vendor. It’s labeled something like “Annual HIPAA Security Assessment” or “Compliance Review Checklist.” You spend twenty minutes clicking

Tagged clinician cybersecurity compliance documentation cyber risk ePHI protection healthcare IT security healthcare law healthcare privacy HIPAA compliance HIPAA security risk analysis HIPAA Security Rule medical practice compliance OCR audit patient data protection ransomware prevention risk management vendor checklist

Your Completed Risk Assessment Just Became a Liability

Cybersecurity
HIPAA
Information Security

by Will Evertsen - April 27, 2026 043

Your Completed Risk Assessment Just Became a Liability Will Evertsen Introduction A data breach hits your practice. OCR opens an investigation. You pull out your completed Security Risk Analysis, hand it over, and wait for the process to run its course. After all, OCR has

Tagged audit readiness compliance documentation cyber liability data breach response ePHI security healthcare compliance healthcare cybersecurity healthcare data breach HIPAA compliance HIPAA Security Rule medical practice compliance OCR enforcement privacy officer remediation plan risk management risk register Security Risk Analysis

Small Practice, Big Target: Why Solo and Group Practices Are Healthcare’s Most Vulnerable Entities

Compliance
Cybersecurity
HIPAA
Information Security

by Will Evertsen - April 22, 2026April 22, 2026 0100

Small Practice, Big Target: Why Solo and Group Practices Are Healthcare’s Most Vulnerable Entities Will Evertsen Introduction You run a small practice. You see patients, manage a lean staff, keep the lights on, and do your best to stay current on clinical obligations. Cybersecurity, if

Tagged breach response clinic data protection cyber liability insurance EHR security group practice cybersecurity healthcare compliance healthcare cybersecurity HIPAA compliance medical identity theft OCR penalties patient data breach phishing attacks ransomware in healthcare risk analysis small practice security solo practice risk

HIPAA for the Clinician, Part 1: What You’re Actually Responsible For

Compliance
Cybersecurity
General Topics
HIPAA
Information Security

by Will Evertsen - April 6, 2026April 6, 2026 0353

HIPAA for the Clinician, Part 1: What You’re Actually Responsible For Abstract This is the first installment of “HIPAA for the Clinician,” a series dedicated to cutting through the noise around healthcare compliance and giving practitioners a clear-eyed view of what the law

Tagged breach notification Business Associate Agreement clinician liability covered entity EHR compliance myth healthcare cybersecurity healthcare law HIPAA compliance HIPAA penalties medical practice management medical privacy OCR investigation patient data protection physician compliance Security Risk Analysis

HIPAA for the Clinician, Part 2: The Security Risk Analysis You’re Probably Not Doing Correctly

Certification

This site complies with the HONcode standard for trust- worthy health information: verify here.

Page Updated: 2026-05-18 06:41:59

Copyrights

Recent Blog posts

Contemporary Lipid Management in Family Practice: Risk Stratification, Coronary Artery Calcium, and Shared Decision-Making for Statin Therapy
Intravenous Lipid Rescue: Why It’s Saving Lives Far Beyond Local Anesthetic Toxicity

Quick Site Links

Social Sharing

Global RPH