The OCS HIPAA Security Compliance Service is designed to help covered entities and business associates of all sizes maintain HIPAA / HITECH compliance at an affordable price point. Along with our partner HIPAA Secure Now!, OCS will provide you with the expert guidance and tools needed to meet the required HIPAA Risk Assessment requirement.
This service has been developed by experts knowledgeable with the HIPAA Security Rule, computer and network security, and security training. The combination of these skills are apparent in the level of detail and knowledge that the service provides.
OCS offers a wide range of services to help meet your individual needs. Please contact us to discuss which option is the best fit for your organization.
A detailed Risk Assessment is required under the HIPAA Security Rule. It is also considered the foundation of the HIPAA Security Rule.
OCS will perform a detailed Risk Assessment that follows the methodology described in NIST Special Publication (SP) 800-30 Revision 1.
- Identify and document all ePHI repositories
- Identify and document potential threats and vulnerabilities to each repository
- Assess current security measures
- Determine the likeliness of threat occurrence
- Determine the potential impact of threat occurrence
- Determine the level of risk
- Determine additional security measures needed to lower level of risk
- Document the findings of the Risk Assessment
The output of the Risk Assessment Consists of:
- Executive Summary Report
- Detailed Risk Assessment Report
- Remediation / Work Plan
Procedures that address:
- Administrative Safeguards
- Physical Safeguards
- Technical Safeguards
Each Policy and Procedure is a separate Microsoft Word document. The Policies and Procedures are customized for your organization.
In addition to the 18 Policies and Procedures, the service also includes forms and checklists that address:
- Device and Media Tracking
- Computer use guidelines
- Tracking access to server and equipment rooms
- Breach notification checklists
One of the most important steps you can take to protect ePHI and patient information is to provide security training to all of your employees. Security training is a requirement under the HIPAA Security Rule.
OCS provides in-depth training on the HIPAA Security Rule as well as advice for best practices in protecting ePHI and patient information. The training is provided in an online format which is both engaging and convenient to your staff.
Save time and expense by utilizing our staff of HIPAA professionals. They will complete your risk assessment, work plan, and customized policy and procedures. You will gain additional time savings from tracking your staff’s training progress via the online portal.
START YOUR HIPAA RISK ASSESSMENT TODAY!
Let OCS help you and your staff with in-depth training on the HIPAA Security Rule as well as a detailed risk assessment which includes and executive summary report, detailed risk assessment report and remediation / work plan.
We began working with Optimized Computer Solutions and Joe Goldstein nearly 2 years ago. If you have a physician practice and are needing IT support, this is the company to work with! Joe’s background in HIPAA compliance, coupled with his knowledge of medical practices and networking systems is second to none! We’ve made many strides in the right direction assuring our network is not only secure but that we also run efficiently. When a computer or networking issue arises, OCS is timely and knowledgeable in helping to resolve the issue. As a Practice Administrator, my team is grateful for the working relationship and support we receive from OCS!
Joe, with Optimized Computer Solutions, is the consummate professional who is not only easy to work with but incredibly knowledgeable in technology solutions. Running a business is hard enough by itself and being able to hand over the IT component has been invaluable to making my business run. Joe has been able to trouble shoot, fix and offer solutions that have saved my business time and money. I would highly recommend Joe and Optimized Computer Solutions to any business in need of superior IT help and solutions.
Optimized Computer Solutions, under the direction and ownership of Joe Goldstein, RESCUED our 12 physician, 8 office Otolaryngology practice. We were faced with a dysfunctional money losing situation and needed to make a change. We were successfully guided through this process under an extremely tight timeline. We came through this difficult experience on time and under budget.
With the guidance and support from OC Solutions, I am more confident then ever that my organization is prepared for the multitude of threats that we as healthcare providers are exposed to on a daily basis.
I cannot recommend Joe Goldstein and the OC Solutions team highly enough. As the CEO of Health to Hope Clinics, I worked with OC Solutions to help us select and deploy a new EMR system. As a Federally Qualified Heath Clinic system we had very unique requirements for an EMR. The requirements for data collection and reporting are quite extensive to say the least.
Joe walked us through the process of scoping our requirements, reviewing solutions, and getting proposals from the three EMRs that fit us best. He went through the painstaking process of sowing the pricing options in a succinct apples-to-apples comparison between the three best solutions. He helped us negotiate pricing that was a fraction of what we thought we would have to spend, while still selecting the system that fit us best.
Once we selected our EMR, Joe managed the hardware upgrades and complete deployment of the system. He led the execution of the entire project on schedule and on budget. Every project of this kind has its frustrations and glitches. Ours were far below what I had expected. In my entire career I can count on one hand when that has happened. I’d highly recommend OC Solutions to anyone who needs strong IT management of their healthcare organization.
I would like to recommend Joe Goldstein and Optimized Computer Solutions for your computer network development, deployment, and support programs.
Acris Solutions has contracted with Optimized Computer Solutions since July 2009. In that time they have facilitated our migration from a physical server environment to a virtualized server environment. In doing so we reduced our physical number of servers by one-half allowing Acris Solutions to eliminate one full rack in our datacenter and its associated costs. They have deployed upgrades to our firewalls, SAN, network design and domain infrastructure including the replacement of over 20 pieces of old equipment with new servers and storage appliances. Optimized Computer Solutions has been instrumental in the installation and deployment of the XenApp Citrix connection platform and our migration from Windows XP/ Office 2003 to Windows 7 /Office 2010. They have partnered with Acris Solutions in the launch of multiple new customers supporting over 350 users in multiple branch locations.
They have provided Acris Solutions with level 1,2 and 3 support on a 24/7/365 basis with tiered responses time graduate from four hours for minor incidents to one hour for major/severe incidents. In providing these levels of support we have achieved customer satisfaction levels of 98% or better.
I believe that Optimized Computers Solutions will be a partner with Acris Solutions for many years to come and I know that they will meet your expectations in the performance of their duties within the scope of the service contract.