Expresso® Risk Assessments

ExpressoRExpresso ® Risk Assessments are the process by which an Organization identifies: Expresso

(1) Threats to the Organization (i.e. to its Operations, Assets, or Individuals);

(2) Vulnerabilities internal and external to the Organization;

(3) The harm (i.e. adverse Impact) that may occur given the potential for Threats exploiting Vulnerabilities; 

(4) The Overall Risk associated with a specific Threat, Vulnerability, and Impact combination; and

(5) Expresso® also provides model Risk Remediation documentation (a.k.a. Visible Demonstrable Evidence of Compliance) associated with High-Risks.


Expresso's® Opening Screen Looks as Follows

All Expresso® options can be accessed from this screen depending on the security level that the logged in User possesses. Some Add-on features are not depicted below.


Expresso® embodies the NIST seven (7) step process (“Methodology”) for performing a Risk Assessment. Expresso® does for Risk Assessments what QuickBooks Online (“QBO”) did for accounting. 

NIST Process

Need to Comply with other Regulatory Regimes? Expresso® is Regime agnostic and can support multiple regulatory compliance regimes. Expresso® currently supports HIPAA and GDPR out of the box. Although the latter is an Add-on.

Need Legal Assistance? 3Lions Publishing also maintains a relationship with the Digital Business Law Group for expert, low-cost legal guidance. Carlos Leyva, Esq. is an authority on HIPAA Compliance and on other compliance regimes as well. He is Managing Partner of the Digital Business Law Group and CEO of 3Lions Publishing.

Don't pay consultants for your HIPAA compliance efforts. Our HIPAA Products and Consulting Services represent considerable value. Our Subscription (Basic) not only includes all current products and updates, but we also provide expert consulting services in addition to quality tools like the Expresso® “Breach Wizard” automated Incident Management and Tracking System.

What else is included?  Monthly Security Reminder Notices, Newsletter articles, and Webinars, Past Webinars recorded online, regulatory updates, best practices, and Our Compliance Manifesto Podcast with more "news you can use." We have pleased clients with "news you can use" for over a decade now; training thousands in the regulations & corresponding processes.

Take a look at our archived newsletters to get a feel for what you can expect. In addition to products, our Services are built upon a robust methodology that helps you continue to meet your compliance objectives.

The initial retail cost of the HIPAA Survival Guide Subscription with Expresso® (Basic) is $1,295.95 and includes software updates and any new product updates released during the subscription year. Its annual renewal is $495.95.

In Q2 2020 we will be announcing Business Partner Vetting, a $500 Expresso® Add-On (Silver) to our subscription package for existing HIPAA Survival Guide with Expresso® clients. Its annual renewal will increase from $495.95 to $795.95.

If you do not currently have Expresso®, and you want Expresso ® Basic, the first time cost for the entire subscription package is $1795.95. Its annual renewal is $795.95.