Ann Nurre

Founder and President

Chief Security Officer

HIPAA Compliance is not a DIY project! 

We know the routes, we know the path. (We've been here before!)

Let us help navigate your practice to a snug harbor.

David Schulz
Executive Director / CEO
Chief Privacy Officer

HIPAA and Texas regulation require every practice appoint a Security Officer and a Privacy Officer; we fulfill these needs as well, with designated officers available to you 24/7.  

Protecting Privacy Pays

... for the practice

as well as the patient.

Regardless of the circumstance or concern, Cyber Risk Associates have a professional on hand to help. 

All Cyber Risk Associates are Certified HIPAA Professionals (CHP). 
Associates are also variously certified in:
Information Security (CISSP);
Information Privacy (CIPP);
Software Security Lifecycle (CSSLP); 
Governance of IT (CGEIT); and
Information Auditing (CISA),
among other expertise. 

Cyber Crime never sleeps. Breaches don't wait on convenience.

We're there for you and your practice 24x7 - Just call 210-281-8151 and tell us your needs.

Disasters happen.  The only question: have you planned for them?   Let our Business Continuity-Disaster Recovery planning team help you prepare ... It's not just good sense, it's the law.  

About Us

We work closely with you and your staff to position the practice against today's threat environment. We continue to monitor preparedness and privacy safeguards, and keep the staff on a path of continual improvement as new threats develop.


Our mission is to provide enterprise quality privacy and security solutions to small healthcare practices and business associates, scaled and tailored to the individual firm, to achieve HIPAA compliance. 
Through our Compliance w/o Pain program, clients ,maintain HIPAA, HITECH, GINA and the stricter enforcement standards of Texas regulations. Our education team writes customized staff training for your firm, regardless of size. We serve as your mandatory Privacy Officer and/or Security Officer.
These are NOT responsibilities a typical IT services provider is prepared or authorized to fulfill.
Want to know for sure? Ask your IT provider for your last mandatory annual risk analysis and remediation plan. That's the first question of a HIPAA audit, when the Office for Civil Rights or Attorney General comes calling!
Cyber Risk Associates

A dream team to relieve all your concerns.

A distinctive, student-centered, enhanced training program “teaches to the real” as well as teaching to the rule.  We go beyond compliance, securing the practice by securing its personnel.