
The HIPAA Security Rule: Basic Requirements
Your organization must assess the security risks involved with storing or transmitting ePHI and ensure compliance with the HIPAA security rule and proper documentation of your compliance processes.
We are audit professionals. We are IT professionals. We are Auditwerx.
Auditwerx is a specialty Certified Public Accountant firm headquartered in Tampa, Florida. We have served clients throughout the U.S. and Canada since 2005, providing over 2,500 security compliance reports. As a division of Carr, Riggs & Ingram Capital, LLC (CRI), a top 25 nationally ranked CPA firm, our clients receive the resources, skills and experience of a much larger firm, but with the accessibility and attention of a smaller, niche, boutique firm.
Fill out this form to get in touch with one of our specialists. We’ll be in touch soon to discuss your compliance needs.
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
From start-ups to larger established organizations, we partner with clients of all sizes in a variety of industries, including:
Auditwerx is dedicated to offering the highest quality compliance reporting services. Our team is dedicated to exceeding your expectations with our policy of mutual respect and transparency.
Partnering with our team means that your company’s compliance initiatives are in experienced hands. Our team of auditors and cybersecurity advisors consists of highly specialized professionals, including Certified Information Systems Security Professionals (CISSPs) and Certified Information Systems Auditors (CISAs).
Because we combine qualified IT auditors with the standards of the CPA profession, we can deliver the technical IT and audit skills needed to clearly relay technical information to both the IT department and management. We are a true partner to our clients, building productive, long-term relationships that you can count on for years to come.
STACY MARTIN
PARTNER IN CHARGE, CHIEF EXECUTIVE OFFICER
Stacy has over 19 years of professional audit experience in both financial reporting and internal control attestation services of companies in various industries including software and technology, healthcare, employee benefit administration, manufacturing, and various service industries. Stacy has extensive experience in the design of operational control environments and assessing the effectiveness of internal controls in various operating environments, and in performing privacy assessments. She has been involved with over 1,000 SOC engagements with Auditwerx and is certified in applying the 2013 COSO Internal Control – Integrated Framework and has the Advanced SOC for Service Organizations Certificate.
For the past 8 years, she has focused on the growth of Auditwerx and adding security compliance services for our clients.
BRIDGET BOSWELL
PARTNER
Bridget has more than 20 years of professional audit experience in both financial reporting and internal control auditing. Her industry expertise includes the software and technology, construction, manufacturing & distribution, service, and not-for-profit sectors.
For the past 6 years, Bridget has specialized in SOC 1 and SOC 2 engagements for service organizations auditing operational control environments and assessing the effectiveness of internal controls. She has extensive experience with auditing employee benefits administration clients.
In addition, Bridget has performed multiple HIPAA assessments and various other attestation engagements to meet her clients needs.
Our virtual audit process combines minimal hardware, collaborative software, and cameras to allow us to perform all or part of our audit engagement virtually and in real time. This is neither a “remote audit” nor a “desk review,” both of which often involve electronic file transfers and little interaction with management. Instead, the virtual audit includes dialogue with process owners virtually, captures and shares information electronically, and integrates technology seamlessly. We also offer the possibility of performing a hybrid audit, whereby we reduce our on-site presence by supplementing it with virtual resources.
Our goal is to provide you with the same high-quality audit services through more focused planning, with reduced distraction, and at a more cost-effective price point. Our virtual audit process provides you with more access to our specialists involved in your audit – regardless of your location.
Auditwerx utilizes a web-based, third-party, Engagement Management Platform (EMP). This solution acts as a secure portal that provides project completion and deadline driven status of the requests needed to complete the testing. This tool provides great clarity to clients in where the process is and what items are outstanding. The portal is inter-active and provides a messaging center and restriction of access to specific requests to authorized users.
This intuitive solution standardizes the information collection process, enhances client experiences while securely exchanging the necessary information and automatically managing workflow. Our proven process increases efficiencies, in a secure platform that enhances the client experience.
Your organization must assess the security risks involved with storing or transmitting ePHI and ensure compliance with the HIPAA security rule and proper documentation of your compliance processes.
In many industries, compliance reporting is expected to be delivered by December each year. If your industry requires fourth quarter compliance reporting, it is important to give your auditor enough time to complete the process.
When your clients are asking to see your cybersecurity certifications, you need efficient reporting services to show your commitment to data protection and effective security controls in a timely manner. Auditwerx consistently works to provide the cybersecurity solutions you need in a way that works with your business needs.