PCG Technology Consulting (TC) was recently awarded a one-year engagement with the California Department of Public Health (CDPH) to complete an independent Health Insurance Portability and Accountability Act (HIPAA) risk assessment. The purpose of this project is to perform an independent risk assessment to ensure CDPH fulfills State Administration Manual (SAM) and HIPAA risk assessment and management requirements. As part of the risk assessment, PCG will report compliance status and actionable solutions that address identified deficiencies; the team will work alongside CDPH staff to remediate processes and deficiencies to ensure that CDPH is compliant with relevant statute and guidelines. PCG will assist CDPH with establishing the foundation of a risk governance strategy in the implementation of an Enterprise Risk Management (ERM) infrastructure. Additionally, PCG TC will work with CDPH to assist in the planning and implementation of remediation activities.