top of page

4-What must you include in your SRA documentation?

Updated: Mar 23, 2021

HIPAA Covered Entities and Business Associates must include in their SRA documentation possible threats and vulnerabilities which they will assign impact and likelihood ratings to. This allows them to determine severity. They must develop corrective action plans as needed to mitigate identified security deficiencies according to which threats and vulnerabilities are most severe. NEXT >

Want to read more?

Subscribe to to keep reading this exclusive post.

Subscribe Now
32 views0 comments

Related Posts

See All
bottom of page