Template Information
Use this risk assessment template to determine what threats and vulnerabilities currently exist in your institution that can put phi at risk.
Category: general
Template Questions
- Describe the scope of this HIPAA Risk Assessment
- List all participants including role (e.g. physician, resident, nurse, med tech, network manager, etc.)
- Describe key technology components including commercial software
- Describe how users access the system and their intended use of the system
- Click (+) Vulnerability after you have identified a vulnerability or threat source
- Observation
- Threat source/ vulnerability
- Evidence (flow diagrams, screenshots etc.) (optional)
- Existing controls
- Risk rating
- Recommended controls or alternative options for reducing risk
- Recommendations
- Name and Signature