Call us directly: 1-787-412-6430

7000 N Plaza Austin, TX 78753 USA View Location

100 Blvd Paseos 1030, PR 00926 USA View Location

App Risk Assessment

Docutek’sĀ Application Risk Assessment evaluates applications and systems that process, transmit, and store sensitive data in the enterprise. Hospitals often have dozens of applications that interface directly with the electronic health record (EHR) system. Each application has a specific PHI security profile (access control, access management, architecture, data set, data flow, data storage) and thus represents a different level of risk to the organization.

Docutek’s Application Risk Analysis uses a proven methodology to identify the tiers of sensitive data in use in the enterprise and to provide risk ratings to all identified applications and data types. This service requires on-site access by our application and regulatory compliance consultants. This comprehensive review will consist of document analysis, interviews with IT management and systems owners and other appropriate staff.

While the above scope of work pertains to HIPAA and PHI, Docutek’s Application Risk Analysis can be applied to other regulatory frameworks such as PCI DSS, SOX, or GLBA