Skip to content
SERVICES

What I Can Help With

Start with a free assessment. Everything else follows from what I find.

START HEREFree External Security Assessment

I scan your practice's public digital footprint and hand-deliver a plain-English report of what I find. Email security, website encryption, exposed services, breach database results. Each finding includes what I found, why it matters, and which HIPAA requirement it touches. You get an overall letter grade so you can see where you stand. No charge, no strings.

IF THE REPORT FINDS ISSUESRemediation

I fix the vulnerabilities identified in your review. Email security configuration, SSL certificates, security headers. Usually completed within a few hours. After the fixes, I re-scan everything and give you an updated report showing what changed. I'll quote you a specific price in writing before any paid work starts.

FOR THE FULL PICTUREHIPAA Security Risk Assessment + Remediation

The documented assessment HIPAA requires, plus I fix everything I find. I visit your office, walk through your physical space, interview staff, and inventory every system that touches patient data. Then I analyze everything against HIPAA requirements, remediate what I can, and deliver a full written risk assessment, the document OCR asks for first in any audit. One engagement, one price. Every practice is different, so I'll scope it and give you a number before we start.

ONGOINGSecurity, Compliance & Tech Support

I become your practice's tech and security person. Monthly security scans, breach monitoring, certificate and configuration alerts, direct tech support, and your annual risk assessment update included. Account setup, password resets, vendor coordination, EHR troubleshooting, “is this phishing?” questions. I pick up the phone. Depends on practice size, and I'll tell you exactly what it costs before we start.

HOW I WORK
System access requires a signed agreement

The free review uses only public information. For remediation and full assessments, I get written authorization before accessing any system.

Security guidance, not legal advice

I identify compliance gaps and security risks based on HIPAA requirements. For legal interpretation, I recommend consulting a healthcare attorney.

I work alongside your existing vendors

I coordinate with your EHR provider, web host, and IT team. I don't replace them. I handle the security and compliance layer they don't cover.

Start with the free assessment.

No obligation. Just a real look at where your practice stands.

Get a Free Assessment