Hospital Associations
Getting Started
A free phone consultation helps us get to know your association and its unique needs. It also provides you the opportunity to ask questions about the U.S. regulatory landscape and how BSC can create a customized roadmap for you so that you can better navigate that landscape to reach your ATO.
The first step is a comprehensive assessment of your current facilities, policies, and practices that impact compliance.
When the assessment is completed, you receive a report detailing our findings, including observations about your current readiness for a Federal Agency Audit.
What We Provide
We customize a strategy to get you ready for an audit. It includes:
- FISMA- and HIPAA-compliant Security Assessment Plan
- Customized security recommendations for each NIST SP 800-53 Control
- Gap Analyses with Plan of Action & Milestones
- Credentialed Scans to determine network vulnerability
We detail for you the type of documentation and reporting necessary to achieve ATO. We can get you started with a compliant template and/or help you prepare the documentation.
We also provide FISMA-compliant templates for System Security Plan (SSP), Security Assessment Plan (SAP), System Boundary Documents, Incident Response, Disaster Recovery, and Contingency Plans, and as well as Configuration Management Plan.
Through site visits, we point out easy fixes to common issues that could trip you up during a future audit.
We partner with you throughout the process until you reach ATO and then provide continuous monitoring support so you maintain your compliance posture.
Our Pricing
First and foremost, there are no surprises with BSC. We price based on your requirements and also your preferences. You will always know in advance the price of specific services.
Additionally, if you are seeking ATO under more than one federal program, for example, FISMA and HIPAA, we leverage our work to avoid duplicate costs.
Free Consultation