OCR Audit Readiness

Prepare and respond to an OCR audit. Improve your compliance with HIPAA regulations.


Educate your staff on what to expect during an audit by experiencing the process with our OCR Mock Audit. Using the OCR audit protocols, CynergisTek assesses your organization’s ability to demonstrate HIPAA compliance and supports your organization’s readiness and ability to respond.

We offer on-site OCR Mock Audits, remote OCR Mock Desk Audits, or OCR Audit Readiness services. Each service is designed to provide your organization with the experience of the application of the OCR audit protocols, obtain valuable guidance and industry best practices on how to prepare and respond if you are selected for an audit.

The OCR Mock Audit addresses the HIPAA Privacy, Security and Breach Notification Rules.

Key Benefits


OCR Audit Experience

Using the OCR audit protocols, your organization experiences the audit notification, timeline requirements, documentation requests, and interviews (for the OCR Mock Audit onsite service).



Receive a detailed report that highlights compliance efforts that have been implemented and includes specific recommendations to remediate gaps to meet the regulatory requirements.

Having a partner that is actively monitoring our systems, trends, local and global threats not only saves the Virtua IT Security team time, but provides us with the ability to proactively look at potential threats to plan accordingly. The partnership with CynergisTek has allowed us to focus on compliance, developing risk programs, policy and procedures leading to a culture focused on making us more secure.

Tom Gordon

CIO, Virtua

Security has become a necessary and critical strategic pillar for our organization, and it is too broad and complex for a provider organization to keep up with on their own. Having a partner like CynergisTek with depth and breadth of knowledge and expertise is a crucial asset for our organization. I can’t imagine navigating these issues without them.

John Mangona

Vice President, Chief Information & Compliance Officer, Saratoga Hospital

CynergisTek’s social engineering and phishing service was an excellent training tool for our organization. A third-party assessment of how our policies and procedures would stack up against a real threat was eye-opening and provided us with valuable information we can leverage to continue to enhance our security posture.

Joe Egan
Director of Information Security, Valley Children’s Hospital

We just had our Incident Response exercise and I wanted to let you know that I have received a lot of positive feedback from all participants including our Executives and Board Members. Everyone was impressed at how the exercise was well-prepared and conducted. Obviously, it goes to your leadership. You were able to relate to all participants, ask the right questions, and in general keep the exercise going forward. You did a great job! Thank you so much CynergisTek!

Francois Bodhuin
DirTechnology Director – ISO at Inspira Health Network


The OCR Mock Audit services are designed to improve your organization’s ability to prepare for and respond to an OCR audit. This exercise allows your organization to assess its ability to perform during an OCR audit or investigation.

CynergisTek identifies compliance gaps, provides preparatory training and resources, advises how to remediate policy and procedure disparities, and ultimately improves your compliance with HIPAA regulations.

Get Started with CynergisTek Today

Be Ready. Be Resilient. Validate

Subscribe to our newsletter