Customers Login Partners Login    twitter   linkedin   facebook
Sign up for our Newsletter     |     Call Us: +1-408-689-2586

Vendor Management

Aegify SecureGRC helps automate the security and compliance management process of all external vendors and sub-contractors. This allows you to know how far your vendors and Business Associates have progressed in their compliance efforts as you follow the steps in Aegify SecureGRC Vendor Management module. You then gain complete visibility and control over the security and compliance posture of all your vendors.

Who Are Your Business Associates in HIPAA/HITECH?

  • Off-site backup facilities
  • Transcription services
  • Billing services
  • Remote managed services
  • IT service providers
  • Third-party administrators that assist health plans with claims processing
  • Pharmacy benefit managers
  • CPAs, attorneys, and law firms with access to patient health information
  • Consultants that perform utilization reviews for hospitals

Vendor management for HIPAA/HITECH is a simple process:

  1. Covered Entity completes a HI-SCAN 25-question assessment of all Business Associates that involves four steps:
    • Input all Business Associates into the HI-SCAN tool
    • Send the assessment to the Business Associates
    • Business Associates answer the questions online
    • Covered Entity reviews responses and generates a quick compliance report that identifies remedial actions
  2. Pursue the high-risk exposure Business Associates with a full assessment

HI-SCAN is a quick technique that utilizes a simple-to-use, brief question set to determine the level of Business Associate security and compliance with HIPAA/HITECH regulations:

Simple steps to quickly access and manage the Security and Compliance levels of Your Organization and your Business Associates:

Sendcloud-based assessment to all your BAs

You and your BAs upload compliance documents into your secure online repository Run risk and compliance report, view your risk status & generate action road map Complete your action road map for security and compliance & work with high-risk BAs to achieve compliance You and your Business Associates are now HIPAA / HITECH compliant under the Omnibus rule

Aegify Vendor (Business Associates) Management Features and Benefits

Key Features Benefits
Manage Business Associate Risks
  • Allows you to manage the risk associated with your Business Associates with a short (25 questions) HI-SCAN risk assessment to quickly assess the level of compliance of your business partners under HIPAA/HITECH—a pH-type measure of information security.
  • Enables integrated external Business Associate and vendor management.
Real-Time Risk Status
  • Provides configurable citation and policy-based risk model with real-time risk status.
Pre-Packaged Content
  • Offers ready-to-use pre-packaged content including policy, best practice and assessment questions with the ability to fully and quickly customize.
  • Includes a single, centralized repository for all compliance-related evidence.
  • Provides complete cloud-based service with no hardware or software investments required.
  • Features exclusive, secure customer instance of SecureGRC.
  • Generates compliance activity email reminders.
Reports and Dashboards
  • Allows generation of extensive risk and compliance reports on demand
  • Conducts continuous security and compliance monitoring with real-time dashboards.
  • Provides option of use for self-assessment, pre-audit and auditing purposes.

For details, refer to the full-feature comparison of all editions or read more on Aegify SecureGRC and its distinct advantages.


How to Buy

Contact Us

For Any other Queries,
Contact Us


Or call Sales at
+1 (408) 689 2586

free subscription

how to buy