HIPAA Assessment

HIPAA Security Rule readiness for healthcare SaaS.

Pricing: $7,500
Timeline: 3 to 5 weeks

What you get

Deliverables

HIPAA Security Rule gap assessment for SaaS companies handling Protected Health Information (PHI). Administrative, physical, and technical safeguards reviewed against your actual architecture, not a generic checklist. Business Associate Agreement template included.

Administrative, physical, and technical safeguard gap analysis
PHI data flow diagram and classification
Policy and procedure authoring for HIPAA compliance
Risk analysis document (required annually by HHS)
Business Associate Agreement template
Breach notification procedure and tabletop

Fit

Who this is for

Healthcare SaaS, telemedicine platforms, and any SaaS handling PHI on behalf of a Covered Entity.

Related assessments

Penetration Testing

Practitioner-led offensive security engagements.

Starting at $4,500

ISO 27001 Assessment

ISO 27001 readiness and certification preparation.

$12,000

CMMC Readiness

CMMC Level 1 and Level 2 readiness for DoD contractors.

Starting at $8,500

Not ready to talk? Score your SOC 2 readiness.

Twenty questions, a scored PDF in your inbox, a realistic timeline to audit. Free.

Start the scorecard

Ready when you are

Your next move starts with a 30 minute call.

If vCISO is not a fit, we will say so on the call and point you toward someone who is. If we are, we will scope a Sprint, the 90-Day Foundation, or a retainer right then.

Book a discovery call See engagement options