HIPAA Risk Assessment

Background
Oklahoma State University Center for Health Sciences (OSU CHS) is requesting proposals for a qualified vendor to provide a HIPAA Security Risk Assessment with Vulnerability and Penetration testing. The solicitation is open to qualified vendors who can meet the requirements outlined in the Request for Proposal (RFP). The goal of the contract is to ensure compliance with HIPAA regulations and to identify and address any potential security vulnerabilities within the healthcare information systems.

Work Details
The vendor is expected to conduct a comprehensive HIPAA Security Risk Assessment, including Vulnerability and Penetration testing. This may involve evaluating the security measures in place, identifying potential vulnerabilities, and conducting penetration tests to assess the system's resilience against potential attacks. The assessment should cover all relevant aspects of HIPAA compliance and security best practices.

Period of Performance
The period of performance for this contract is from the date of award until completion of the HIPAA Security Risk Assessment, including Vulnerability and Penetration testing. The specific timeline for the assessment and testing will be determined in consultation with the awarded vendor, but it should be completed within a reasonable timeframe after the contract award.

Place of Performance
The performance of this contract will take place at Oklahoma State University Center for Health Sciences (OSU CHS) or at locations specified by OSU CHS where healthcare information systems are in operation and require assessment.