HIPAA

Josef Kamara, CPA, CISSP, CISA · Updated May 6, 2026 · 1 minute read

Risk Analysis

Systematic identification and evaluation of risks to ePHI confidentiality, integrity, and availability. HIPAA\'s Security Rule requires documented risk analysis as the foundation of all subsequent security decisions and safeguard selections.

From the library

The full analysis on Risk Analysis.

The article is where the term meets the practitioner. Read how this concept actually shows up in audit, in remediation, and in the boardroom.

Read the analysis →
The Authority Brief

One compliance analysis per week from Josef Kamara, CPA, CISSP, CISA. Federal and private compliance, written for practitioners.