About Nick Macias (SR. DIRECTOR | CISA, CCSFP)

Nick Macias (Linford & Company)

Nick has over ten years of professional experience in public accounting and risk consulting, with an extensive background in healthcare payer/provider audit and compliance. Prior to Linford & Co. Nick worked in multiple healthcare audit, compliance, and consulting roles, including six years at PwC. He completed a Bachelor of Arts from Colorado State University in 2005, and later a Master in Accountancy. Nick has experience leading SOC 1, SOC 2, HITRUST and HIPAA Security audits. He takes pride in his ability to work with small start-ups and to lead multi-year projects with numerous large health systems and payers.

HIPAA risk assessment

HIPAA Risk Assessment: Security Compliance vs Risk Analysis – What is the Difference?

Throughout 2018 and 2019, the OCR has identified the failure to conduct and adequate risk assessment as a key finding in nearly half of their settlements. Making it the largest single source of identified HIPAA violations. Many organizations undergo some level of third party reporting on their compliance with the HIPAA security rule. Generally these […]

2019 HIPAA Security Breaches

2019 HIPAA Wall of Shame: Recent Security Breaches & Examples for Companies to Learn From

If you’re already following HIPAA compliance-related news, you’re probably already familiar with the “Wall of Shame.” If you’re just getting started, read on. The HIPAA Breach Notification Rule requires Covered Entities and Business Associates to report breaches of protected health information (PHI) to the U. S. Department of Health and Human Services (HHS).

Business Associate Vendor/Third Party Risk Management Solutions for HIPAA Compliance

If my company is not a healthcare provider, what do we need to do to demonstrate proper vendor due diligence required by HIPAA/HITECH? Many times, this question is posed to audit firms and consulting firms when a client receives a security questionnaire from a potential or existing healthcare customer they provide services. This article will […]