HIPAA Security Rule Compliance: More Important Than Ever
PRE-RECORDED AUDIO CONFERENCE
Date: Tuesday, October 30, 2012
Time: Request for replay on any day
Length: 60 minutes
Many Entities Have Not Undertaken The Effort Necessary To Be In Compliance With The HIPAA Security Rule. Do Not Be One Among them!
Since the US Department of Health and Human Services Office for Civil Rights is pursuing the HIPAA Security Rule aggressively, it has become a new focus of enforcement efforts now. As you know, with the HIPAA Security Rule, you must undertake a complete and thorough analysis of risks to the confidentiality, integrity, and availability of electronic protected health information, and implement the policies and procedures appropriate for your organization to mitigate risks as necessary. Every healthcare provider is different and what is appropriate for each entity can vary widely, depending on the systems used and how you do business.
Please remember, the HIPAA Security Rule calls for written policies and procedures, and documentation of their application to show that the required information security management process is in place and effective. Since audits now being performed randomly, you require to produce significant documentation to show that you have adopted and are using policies and procedures properly. Security is especially threatened today by the wave of new systems and technologies such as portable devices, smart phones, texting, and social networking. Both staff and patients want to use these technologies to improve patient care, but significant issues of information security may put some uses into non-compliance.
Register for a power-packed 60-minute session, in which our expert speaker, Jim Sheldon-Dean will walk you through the requirements of the HIPAA Security Rule, elements of a HIPAA security risk analysis, framework of security polices, typical policy considerations for laptops and portable devices and their security, HIPAA audit process and its results. You will get free tools that you can use for policies and documentation and lot more.
Take a look at what Jim will cover:
The penalties for non-compliance of the HIPAA Security Rule enforcement will be discussed and recent enforcement action results will be presented.
Establishing an information security management process that continues over time to manage risks as systems and threats change.
The top security issues found by HHS investigators during HIPAA compliance audits and as a result of breaches will be presented and discussed.
Discuss the necessary policies and procedures to govern the use of electronic information, and tools for documenting compliance.
Discuss how laptops and portable devices are used in health care, and present their security risks.
Provide strategies to mitigate the risks of portable technology.
Present the use of training and documentation to mitigate risks, and explore training strategies.
Discuss how incident management must be planned and executed to minimize the damage of breaches and satisfy HIPAA regulations.
Being prepared for audits will be discussed, including the recently released The HIPAA Audit Protocol.
Jim Sheldon-Dean is the founder and director of compliance services at Lewis Creek Systems, LLC, a Vermont-based consulting firm founded in 1982, providing information privacy and security regulatory compliance services to a variety of health care providers, businesses, universities, small and large hospitals, urban and rural mental health and social service agencies, health insurance plans, and health care business associates.
Sheldon-Dean serves on the HIMSS Information Systems Security Workgroup, has co-chaired the Workgroup for Electronic Data Interchange Privacy and Security Workgroup, serves on the WEDI Breach Notification sub-workgroup, and is a recipient of the WEDI 2011 Award of Merit. He is a frequent speaker regarding HIPAA and information privacy and security compliance issues at seminars and conferences, including speaking engagements at numerous regional and national healthcare association conferences and conventions.
Sheldon-Dean has more than 30 years of experience in policy analysis and implementation, business process analysis, information systems and software development. His experience includes leading the development of health care related Web sites; award-winning, best-selling commercial utility software; and mission-critical, fault-tolerant communications satellite control systems. In addition, he has eight years of experience doing hands-on medical work as a Vermont certified volunteer emergency medical technician. Sheldon-Dean received his B.S. degree, summa cum laude, from the University of Vermont and his master’s degree from the Massachusetts Institute of Technology.