The NIST SP 800-66 Third-Party Compliance Checklist
The U.S. National Institute of Standards and Technology (NIST) developed SP 800-66 to help healthcare delivery organizations (HDOs) understand the Health Insurance Portability and Accountability Act (HIPAA) Security Rule and provide a framework to support its implementation. The HIPAA Security Rule applies to any organization managing electronic protected health information (ePHI), whether they are a covered entity or a business associate (e.g., third-party vendor, supplier or partner).
This comprehensive checklist examines the HIPAA risk assessment requirements in NIST SP 800-66r2. Download the guide to:
- Understand which HIPAA Security Rule provisions call for third-party risk assessments
- Map key third-party risk management capabilities to HIPAA Security Rule Implementation Guidance and HIPAA Security Rule Requirements
- Learn how Prevalent can help you address the requirements in NIST SP 800-66r2 and the HIPAA Security Rule
This checklist is critical reading for anyone who needs to apply the principles of NIST SP 800-66r2 to address HIPAA Security requirements for business associates.
Please register below:
Oops! Your browser is preventing this registration form from loading. Please try one of the following:
- If using Firefox, disable private mode or enhanced tracking protection.
- If using an ad blocker, temporarily disable it or add Marketo to its allow list.
-
Ready for a demo?
- Schedule a free personalized solution demonstration to see if Prevalent is a fit for you.
- Request a Demo