Risk Management sample questions

General

Has the organization conducted an organization-wide risk assessment with respect to HIPAA compliance?

Contingency Planning

Have contingency plans been developed, reviewed, tested, approved and put in place?

Disaster Recovery

Are the organization's information systems periodically backed up with the back-up data maintained off-site in a secure location?

Impact Analysis Methodology page