A Streamlined Approach to the SRA

If you've tried completing your Security Risk Assessment using tools or automated spreadsheets that you found online, you know how labor-intensive and difficult it can be to complete. Assigning risk scores to questions and identifying threats that correlate to those risks can be confusing, and the average user doesn't have the time to study and comprehend the methodology to perform this type of risk assessment correctly. If you're looking for a better, simpler solution to completing your SRA, you're in the right place.

Our Complementary Tool

Be confident in building your security program - regulatory bodies present vague compliance requirements and the internet is littered with contradictory, low-value content. The fact is, you're responsible for your IT Security and oftentimes it's difficult to get other key stakeholders to understand that responsibility. Use this tool to cut through the noise and easily communicate what is important to your organization.

TraceSRA is based on the Security Risk Assessment (SRA) Tool developed by the Office of the National Coordinator for Health Information Technology (ONC) and the HHS Office for Civil Rights (OCR). TraceSRA was designed to help healthcare providers perform a Security Risk Assessment as required by the HIPAA Security Rule and the Centers for Medicare and Medicaid Services (CMS) Electronic Health Record (EHR) Incentive Plan.

What's Different?

TraceSRA connects each question with potential threats your organization may have based on our 15+ years of cybersecurity experience. As you go through the questions, our program automatically maps your answers to particular Threats with Likelihood and Impact scores. You have the option to adjust any threats and scoring as you see fit, or leave the cybersecurity expertise to us. We know that all of the questions generally can't be answered by one person, so we also allow multiple users to work on the same assessment. Once you complete the questions and review your threat scores, you can generate a comprehensive report that includes your risk scores by section, areas for review, and vulnerabilities.

Let's Connect!

Contact Us