All I have is one computer, why do I have to worry about doing a security risk assessment (SRA)?
While HIPAA is a specific federal regulation around electronic billing or interactions around Medicare or Medicaid, the same privacy and security issues show up in a variety of regulations. These include federal, state, and civil statutes (tort actions). HIPAA is considered the gold standard on security PHI. By following HIPAA, you provide yourself with an affirmative defense when a breach occurs, and other statutes may be at hand.