Blog

We ensure small to medium sized health care organizations are successfully able to navigate through complex HIPAA regulatory compliance.

“Protecting Patient Data”

Get the latest Spiral Security Advisor and Risk Management Updates

July 8, 2025

Why It’s Best for Private Physicians to Use a Cybersecurity Firm for HIPAA Risk Assessments Rather Than Their MSP

L Kirby CISA, CRISC, CDPSE. CTPRP, CEH HIPAA Compliance, HIPAA, Independent Physician Practice

For small and medium-sized private physician practices, ensuring HIPAA compliance is not just a regulatory necessity but a critical step in protecting sensitive patient data. Many practices turn to their Managed Service Providers (MSPs) for IT support and cybersecurity solutions, but when it comes to conducting a thorough HIPAA risk assessment, this may not be […]

September 15, 2024

The Crucial Decision: Choosing Cybersecurity Compliance Vendors Over General Technology Service Providers for Small Physician Practices

L Kirby CISA, CRISC, CDPSE. CTPRP, CEH HIPAA, Cybersecurity Compliance, HIPAA Compliance, Independent Physician Practice, Technology HIPAA, HIPAA Compliance, HIPAA Risk Assessment

For small physician practices, protecting sensitive patient information isn’t just a matter of following legal mandates—it’s crucial for maintaining trust and operational integrity. As healthcare technology evolves, many practices have turned to technology service providers to manage their IT needs. However, when it comes to cybersecurity compliance, relying solely on these providers can be a […]

July 28, 2024

Why HIPAA Risk Assessments are as Crucial as Your Yearly Physical!

L Kirby CISA, CRISC, CDPSE. CTPRP, CEH HIPAA, Independent Physician Practice, Technology

Introduction Just as a yearly physical is essential for maintaining personal health, a HIPAA risk assessment is vital for the health of your organization’s data security. Both are preventive measures designed to identify potential issues before they become significant problems. At Spiral Security Advisors, we believe that regular HIPAA risk assessments are fundamental to ensuring […]

July 24, 2024

Understanding the SEC’s Cybersecurity Incident Disclosure Rule: What Small Brokerage Firms Need to Know

L Kirby CISA, CRISC, CDPSE. CTPRP, CEH Brokerage Firms, FINRA, SEC

Introduction In today’s increasingly digital world, cybersecurity is a top priority for all businesses, including small brokerage firms. The Securities and Exchange Commission (SEC) has recently intensified its focus on cybersecurity by introducing a new rule that requires publicly traded companies, including brokerage firms, to disclose significant cybersecurity incidents. For small brokerage firms, understanding and […]