Cyber Security Services offers HIPAA & HITECH compliance consulting for healthcare organizations and their business associates. The service covers the three safeguard domains mandated by HIPAA: administrative, physical, and technical. Administrative Safeguards include risk assessments, risk management program development, HIPAA/HITECH gap assessments, security policy development, sanction policies, information systems reviews, security awareness training, business continuity planning, and vendor risk assessments. A Virtual Risk Officer service is also available for on-demand HIPAA security leadership. Physical Safeguards include physical security assessments, site visits, social engineering testing, fraud assessments, business continuity and contingency planning, building access control planning, data disposal planning, electronic and physical media disposal, and data backup planning. Technical Safeguards include vulnerability assessments, penetration testing, incident response plan development, data breach and forensic investigation, network access control (NAC), dynamic segmentation and Zero Trust security, identity and access management (IAM), security log monitoring, endpoint detection and response (EDR), and encryption solutions. Additionally, Virtual CISO (vCISO) and Virtual Privacy Officer (vPO) services are offered, providing on-demand security and privacy leadership, along with medical device risk assessments. The service targets hospitals, health insurance companies, medical device manufacturers, pharmaceutical and life sciences organizations, and third-party business associates handling PHI. Consultants hold certifications including CISSP, HCISPP, and CISA.