Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary Β» HIPAA Β» SRA Tool

SRA Tool

The OCR in partnership with the Office of the National Coordinator for Health Information Technology, developed a downloadable Security Risk Assessment (SRA) Tool that guides users through the security risk assessment process by utilizing a simple, wizard-based approach as asked for by the CMS or the Centers for Medicare and Medicaid Service Electronic Health Record (EHR) Incentive Program and the HIPAA Security Rule. Users are guided through threat and vulnerability assessments, multiple-choice questions, and asset and vendor management.

Additional reading

What Is HITRUST Compliance and Why Is It Important?

For healthcare companies, obtaining certification from HITRUST (Health Information Trust Alliance) isn’t just about ticking a compliance boxβ€”it’s a commitment to establishing a robust standard for data protection. According to a HIMSS survey, a significant 81% of US hospitals and health systems, along with 83% of health plans, have chosen HITRUST as their primary framework…

Understanding NIST 800 137: A comprehensive guide to Information Security Continuous Monitoring (ISCM)

The National Institute of Standards and Technology (NIST) has long been a pivotal force in shaping global standards and guiding cybersecurity professionals. NIST has developed essential frameworks and guidelines that enhance the capabilities of both industry and government in identifying and responding to cyber threats. One such critical publication is NIST SP 800 137 which…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.

Contact sales