Layton, UT · CISSP-ISSEP · HIPAA & Healthcare Security

The HIPAA risk analysis your practice needs, done right.

I'm Jordan Beck, CISSP-ISSEP. When your insurance renewal, an OCR inquiry, or a client's security questionnaire asks whether your patient data is protected, I give you the documented, audit-ready answer, plus a clear plan to close whatever gaps we find.

A focused 30-minute conversation · Serving healthcare and regulated businesses

Sample Report

Illustrative

Dental group · 12 staff

HIPAA SRA · sample findings


Unencrypted ePHI at rest
High
MFA missing on admin console
Medium
BAA missing for backup vendor
Medium
Patch cadence documented
Low

Posture

Moderate · Actionable

Prepared by

Jordan Beck, CISSP-ISSEP

Illustrative deliverable · Every engagement includes a written report

Why practices call

You are probably here because something forced the question.

Most security work starts with a deadline, not curiosity. If one of these sounds like your week, that is exactly what I handle, and the first call is free.

Your cyber-insurance renewal

The carrier is asking for a current Security Risk Analysis before they will quote or renew.

A client or partner questionnaire

A larger customer sent a vendor-security assessment you have to answer credibly to keep the contract.

An OCR inquiry or audit

A complaint, a breach, or a random audit means you need a documented, audit-ready SRA on file, dated and complete.

You know you are overdue

The SRA is a standing HIPAA requirement, and yours is old, thin, or has never actually been done.

How it works

A predictable path from first call to final report.

01

Security Gap Review

A focused 30-minute conversation about your environment, your compliance drivers, and your timeline.

30 minutes, no cost

02

Scoped Engagement

A written proposal that documents the fixed scope, the deliverables, and the price, for you to approve before any work begins.

Varies by service

03

Report and Debrief

A written report containing an executive summary, the technical findings, and a prioritized remediation roadmap your team can act on. Every deliverable is yours to keep on file, ready whenever an auditor, insurer, or client asks to see it.

Within the stated timeline

Start here

Ready to understand your exposure?

In a 30-minute Security Gap Review, I will listen to what you are working on, tell you where I would start, and let you know whether my services fit.

Jordan Beck, founder of JBeck Cyber

Jordan Beck

CISSP-ISSEP · Founder, JBeck Cyber