OCR Audit Assistance

Be Prepared for an OCR Audit

During the Office for Civil Rights (OCR) pilot audit program, the top reason for non-compliance was that the organization was “unaware of the requirement.” Educate and train your staff on what to expect during an audit by experiencing the process with our OCR Mock Audit. CynergisTek will hold your staff to OCR standards while assessing your organization’s ability to demonstrate HIPAA compliance and will support your organization’s readiness and ability to respond. The OCR Mock Audit addresses HIPAA Privacy, Security and Breach Notification Rules.

This service was developed as a result of working with several customers who were randomly audited under OCR’s pilot random audit program. We supported our clients with on-site consultants and were able to experience the application of the audit protocol and learn how the process works first-hand. This gave us great insight into how the regulations are being interpreted and allows us to better help you prepare for these audits.

Our Experts are Waiting!

Contact us to learn more about our OCR audit assistance service and how we can help your organization.

Mock Audit Timeline

1 Day

Notification Letter

15 Days

Documents Due

20-30 Days

Onsite Audit

20-30 Days

Draft Audit Report

10 Days

Review/Comment Period

30 Days

Final Audit Report

Mock Audit Features

Actual OCR Audit Timelines

Audit Notification Letter

Request of Required Documentation

Review of Requested Documents for Deficiencies

On-site Interview with Staff

On-site Audit Team Interaction

Draft Audit Report

Final Audit Report

Educational Workshop of Findings & Lessons Learned

Executive Presentation of Performance

The CynergisTek Promise

This exercise will allow your organization to assess its ability to perform during an OCR audit or investigation. With the OCR Mock Audit, CynergisTek will help you discover any compliance gaps, provide preparatory training and resources, advise how to remediate policy and procedure disparities, and ultimately improve your compliance with HIPAA regulations.

What Our Clients Say

CynergisTek’s OCR Mock Audit service helped us prepare for the OCR HIPAA audit process immensely. We worked at our own pace to identify and address any gaps that may have been problematic down the line and received actionable insights from CynergisTek for improving our overall security posture. Today, we feel more confident than ever in our ability to respond to an audit.

Daniel Bowden, CISO, University of Utah Health Care

Related Resources

Compliance and Audit Services

HIPAA Compliance and Enforcement

OCR Says Desk Audits Rates Many HIPAA Efforts to be Inadequate or Worse

Three Essential Best Practices for HIPAA Compliance