Your Internet browser is outdated and cannot run this website. In order to view this site, and to protect your computer, please click to upgrade to a modern web browser of your choice:

Google Chrome or Mozilla Firefox

(Worry not– it's quick, safe and free, and you won't regret it!)

HIPAA Compliance Services

Strategic Management’s HIPAA knowledge and experience concentrates on the importance of understanding and incorporating the regulatory compliance requirements into an existing organizational strategy and compliance infrastructure.

Since the initial draft of the HIPAA Privacy and Security Rules was released, the Strategic Management team has provided research, analysis, and program support on HIPAA rules and requirements to a number of organizations including both commercial sector entities and government agencies. More specifically, our experience includes developing privacy research briefs, educational programs, and project tracking tools for the Department of Defense Military Health System, conducing HIPAA implementation progress reviews for the Office of Personnel Management Federal Employee Health Benefit Program (FEHBP) contractors, and supporting hundreds of private sector health care organizations in the development, assessment, and management of their privacy and security compliance programs.

Would you like to speak to somebody about HIPAA compliance? You can contact the Strategic Management team by calling Catie Heindel, our lead HIPAA consultant, at (703) 683-9600 or by clicking here for our online form. The Firm would be happy to answer any questions you may have how to keep your organization HIPAA compliant.

ADVISORY SERVICES

Health care organizations are under greater scrutiny today than ever before, leaving most compliance departments tasked with the overwhelming responsibility of monitoring and ensuring compliance with several federal and state requirements, including HIPAA and HITECH. As such, organizations need easy access to HIPAA experts and tools to stay complaint.

Strategic Management’s consultants, highly knowledgeable and experienced with the HIPAA and the HITECH Act requirements, are available to help all types of health care organization organizations understand and manage their responsibilities under HIPAA. As there have been many recent changes to the HIPAA Privacy and Security requirements, our advisory services are perfect for compliance officers that need a second opinion regarding how to develop and implement the new changes at their organization.

The Firm has also developed a variety of compliance tools, such as policies and procedures, compliance training and complaint tracking processes to facilitate HIPAA compliance efforts. Additionally, we have designed several tools to promote breach preparedness, which are essential when dealing with a potential breach scenario.

Strategic Management HIPAA Advisory Services include:

  • Assisting health care providers to develop overall HIPAA strategy.
  • Developing custom policies and procedures for a variety of organizations.
  • Assisting in developing HIPAA-related strategies and business plans.
HIPAA TRAINING

The HIPAA Privacy and Security Rules require organizations to train all workforce members on its privacy and security policies and procedures, as necessary and appropriate for each person to carry out their job functions. Strategic Management provides HIPAA training in a variety of modalities ranging from web-based, online training to live, on-site, instructor-led training.

Available HIPAA training programs range from basic training for front-line staff to more comprehensive programs for managers, directors, and decision makers. We perform complete and effective trainings in accordance with the scheduling convenience of our clients – day or night, weekday or weekend. Complete reference and training materials are always included.

Strategic Management has a team of highly experienced HIPAA trainers and facilitators that can customize training to the client’s culture. Programs range from basic training programs for front-line staff, as well as more comprehensive programs for managers, directors, and decision makers.

Our program includes benefits such as:

  • On site HIPAA training at your facilities – at your convenience.
  • Lower costs than traveling to off site seminars.
  • Day or night, weekday or weekend – we accommodate your schedule.
  • You provide the room – we deliver complete and effective HIPAA training.
  • Complete reference and training materials are always included.
Camella Boateng
Camella Boateng, MPH, CHC, CHPC
  • Master in Public Health, New York University
  • Bachelor of Science, Biology, College of William and Mary
  • Certified Healthcare Compliance (CHC) Professional, HCCA
  • Member, Health Care Compliance Association
  • Member, Health Care Compliance Association Member, American Public Health Association
Ask An Expert
HIPAA ASSESSMENT AND REMEDIATION

Strategic Management’s consultants offer assessment services that evaluate an organization’s compliance with the HIPAA Security and Privacy Rules requirements, as well as its overall data security and privacy posture. These HIPAA assessments serve as an effective tool for identifying gaps and weaknesses in an organization’s internal controls and often provide valuable insight into risks that have otherwise been concealed or overlooked by internal reviews.

During a HIPAA Assessment, Strategic Management will analyze and evaluate, both quantitatively and qualitatively, an organization’s systems and controls with respect to each of the various HIPAA requirements.

Where problematic areas are identified, Strategic Management will conduct an impact/probability analysis to prioritize the highest risk areas for remediation. A risk remediation work plan will then be developed that outlines and assesses the strength of the internal controls and systems for each area, with suggestions for remediation, including:

  • Developing and/or revising HIPAA policies and procedures to remediate risks.
  • Developing or revising existing internal controls to address existing risk areas.
  • Developing and delivering staff training to ensure that employees and managers understand the outstanding risk issue, the measures used to address the risk, the compliance principles surrounding the risk, and how the risk is mitigated and managed.
Rita Isnar
Rita Isnar, JD, MPA
  • Bachelor of Arts, Political Science, York University, Toronto, Canada
  • Juris Doctor, cum laude, Syracuse University College of Law, Syracuse, New York
  • Master of Public Administration, Maxwell School of Syracuse University
  • American Health Lawyers Association
  • New York State Bar Association
Ask An Expert
INTERIM PRIVACY OFFICERS

The HIPAA Privacy Rule requires a covered entity to designate a Privacy Officer responsible for developing and implementing its privacy policies and procedures, as well as to serve as a contact person/office responsible for receiving complaints and providing individuals with information on the entity’s privacy practices.

Strategic Management is able to provide highly trained and experienced Interim Privacy Officers who are able to quickly assess and address organizational HIPAA needs. Our Interim Privacy Officers have the experience, expertise, and ability to immediately assess HIPAA Privacy exposure and priorities, as well as the skills to address organizational needs, deficiencies and gaps. Our consultants are certified HIPAA experts, with in-depth knowledge of the HIPAA Privacy laws and regulations and complaint management processes.

Strategic Management’s Interim Privacy Officers:

  • Conduct privacy assessments.
  • Develop privacy policies and procedures.
  • Lead privacy education and training.
  • Lead and perform ongoing privacy compliance monitoring.
  • Receive complaints concerning potential violations of privacy policies and HIPAA Rules.
  • Investigate potential breaches.
  • Notify individuals and state and federal authorities of breaches in accordance with applicable laws and regulations.
  • Work with others to mitigate damage and prevent recurrence of privacy and security incidents.
SECURITY OFFICER SERVICES

The HIPAA Security Rule requires covered entities and business associates to designate a Security Officer who is responsible for developing and implementing its security policies and procedures.  A critical part of any successful HIPAA compliance program is ensuring that the Security Officer is actively involved in an organizational capacity and is knowledgeable about the various HIPAA Security requirements. Where an organization needs support for an existing Security Officer or does not have personnel who can fully meet the responsibilities of the Security Officer, it should seriously consider outsourcing the role to ensure that it satisfies the federal requirements.

Strategic Management is able to assist Security Officers in meeting their obligations and is also able to provide highly trained and experienced Interim Security Officers who are able to quickly assess and address organizational HIPAA needs.  Our consultants are certified HIPAA experts, with in-depth knowledge of the HIPAA Security laws and regulations.

Our services include:

  • Conducting security risk assessments.
  • Developing privacy policies and procedures.
  • Leading security education and training.
  • Performing ongoing security compliance monitoring.
  • Receiving complaints concerning potential violations of security policies and HIPAA Rules.
  • Investigating and resolving potential security incidents and breaches.
  • Notifying individuals and state and federal authorities of breaches in accordance with applicable laws and regulations.
  • Working with others to mitigate damage and prevent recurrence of privacy and security incidents.
Cornelia Dorfschmid
Cornelia Dorfschmid, PhD, MSIS, PMP, CHC
  • Ph.D. Economics, New York University/ New York City, NY
  • M.A. Economics, Albert-Ludwigs-Universität/Freiburg, Germany
  • B.A. in Law (Vordiplom) Albert-Ludwigs-Universität/Freiburg, Germany
  • M.S. Information Systems, George Washington University/ Washington, DC
  • CIO Certificate in Federal Executive Competencies from the Chief Information Officers University and GWU
  • Member of the Project Management Institute (PMI) and a certified Project Management Professional® (PMP)
  • Member of Health Care Compliance Association (HCCA)
  • Member of American Health Lawyers Association (AHLA)
  • Certified Health Care in Healthcare Compliance (CHC)
Ask An Expert
HIPAA SECURITY SUPPORT SERVICES

A critical success factor of a HIPAA compliance program is the Security Officer’s active involvement in an organizational capacity and knowledge of the various HIPAA Security requirements. Where an organization needs support for an existing Security Officer or does not have in-house personnel who possess all the skill sets needed to fully meet the responsibilities of the Security Officer, outsourcing support of the role or combining the role with the Privacy Officer are viable alternatives.

Strategic Management can provide highly trained and experienced staff to support the Security Officer function and serve as a “back office” with experts.

Our services include:

  • Conducting security risk assessments.
  • Performing an “Evaluation” in accordance with the HIPAA Standard.
  • Developing/Revising  security policies and procedures.
  • Leading/Developing HIPAA security education and training.
  • Performing ongoing security compliance monitoring.
  • Receiving complaints and managing potential/actual violations of security policies and HIPAA Rules.
  • Investigating and resolving potential security incidents and breaches.
  • Monitoring Business Associates (BA) and BA Agreement processes.
  • Notifying individuals and state and federal authorities of breaches in accordance with applicable laws and regulations.
  • Assisting with mitigation and prevention of recurrence of privacy and security incidents.
  • Serving as regulatory and technical back office to support the Security Officer.
Cornelia Dorfschmid
Cornelia Dorfschmid, PhD, MSIS, PMP, CHC
  • Ph.D. Economics, New York University/ New York City, NY
  • M.A. Economics, Albert-Ludwigs-Universität/Freiburg, Germany
  • B.A. in Law (Vordiplom) Albert-Ludwigs-Universität/Freiburg, Germany
  • M.S. Information Systems, George Washington University/ Washington, DC
  • CIO Certificate in Federal Executive Competencies from the Chief Information Officers University and GWU
  • Member of the Project Management Institute (PMI) and a certified Project Management Professional® (PMP)
  • Member of Health Care Compliance Association (HCCA)
  • Member of American Health Lawyers Association (AHLA)
  • Certified Health Care in Healthcare Compliance (CHC)
Ask An Expert

Experienced Professionals with Unique Qualifications

Strategic Management has been helping organizations solve health care compliance issues for over twenty years and the Firm has been offering HIPAA compliance services since the initial drafting of the Security and Privacy Rule. The firm’s HIPAA consulting team offers extensive experience in these areas and have worked at the highest level of commercial and government agencies.

If you want speak to a member of the team and find out how they can help your organization then contact us today. You can call Strategic Management at (703) 683-9600 or complete our online form.

Go from the HIPAA Services page to the main HIPAA compliance homepage

Ask an Expert

We have been helping health care entities since the first draft of the Security and Privacy Rule and we are ready to help guide your organization through the process. Fill out the contact information to the right and our team will provide you with the answers you need.
  • This field is for validation purposes and should be left unchanged.
×
[class^="om-col-"]
[class^="om-col-"]
[class^="om-col-"]
[class^="om-col-"]
[gravityform id=30 title=false description=false ajax=true tabindex=49]