Latest Analyst Report: The 2023 Gartner® Market Guide for Supplier Risk Management Solutions

Hero legal

The NIST SP 800-66 Third-Party Compliance Checklist

White paper nist 800 66 0822

The U.S. National Institute of Standards and Technology (NIST) developed SP 800-66 to help healthcare delivery organizations (HDOs) understand the Health Insurance Portability and Accountability Act (HIPAA) Security Rule and provide a framework to support its implementation. The HIPAA Security Rule applies to any organization managing electronic protected health information (ePHI), whether they are a covered entity or a business associate (e.g., third-party vendor, supplier or partner).

This comprehensive checklist examines the HIPAA risk assessment requirements in NIST SP 800-66r2. Download the guide to:

  • Understand which HIPAA Security Rule provisions call for third-party risk assessments
  • Map key third-party risk management capabilities to HIPAA Security Rule Implementation Guidance and HIPAA Security Rule Requirements
  • Learn how Prevalent can help you address the requirements in NIST SP 800-66r2 and the HIPAA Security Rule

This checklist is critical reading for anyone who needs to apply the principles of NIST SP 800-66r2 to address HIPAA Security requirements for business associates.

Please register below:

  • Ready for a demo?
  • Schedule a free personalized solution demonstration to see if Prevalent is a fit for you.
  • Request a Demo