th_Clearwater-Information-Risk-Management-Maturity-Model_cover-1-236x300.pngWith Accompanying Clearwater Information Risk Management Capability Advancement Model™ Assessment Tool

While the content of this white paper and the ensuing recommendations are applicable to organizations in all industries, this information risk management white paper is especially important to healthcare organizations and most of their vendors.  These organizations that create, receive, maintain or transmit Protected Health Information (PHI)1 are defined under the Health Insurance Portability and Accountability Act (HIPAA)2 as Covered Entities3 (CE) and their Business Associates4 (BA), and are required by law to protect this information from compromise or potentially suffer considerable consequences.