For Assistance Email: support@mentorhealth.com Phone: 800-447-9407 or
Fax your PO to: 302-288-6884
Live Webinar
on
The Top Five Issues for Health Information Security Compliance: What to do About Encryption, Mobile Devices, Disaster Recovery, Documentation, and Training
Date & Time: Wednesday, April 4, 2012
10:00 AM PDT | 01:00 PM EDT
Duration: 90 Minutes
Instructor: Jim Sheldon-Dean
Location: Online
Price : $195.00
Register Now
(for one participant)
Instructor Profile:
Overview:
Jim Sheldon-Dean Director of Compliance Services, Lewis Creek Systems, LLC
Even though every health care organization is different and has different problems and different needs, most organizations face similar sets of security risks that must be mitigated. In fact, information from the US Department of Health and Human Services based on breaches and audits shows that the top five issues they find are similar to the ones voiced by the chief information officers of health care institutions. l
The issues involve controlling access through technical and physical policy and procedure, training staff to properly follow the policies and procedures, and having a solid incident handling process in place to follow when things go wrong.
l
l
The issues most often encountered include: ¡
Security of portable devices and remote access by staff and vendors
¡
Survival of adverse events such as breaches and disasters
¡
Lack of adequate security awareness and training
¡
programs Incoherent, overlapping policies and procedures
¡
Incomplete or nonexistent compliance documentation
To mitigate the risks, some of the issues require staff-related policy adjustments and training, particularly in the areas of portable devices that carry or access PHI, and remote access. Not only staff, but also vendors are looking for remote access to systems that may not be as secure as it should be. Issues of event response also are prevalent, from an inability to adequately respond to incidents that may be reportable security breaches, to an inability to adequately recover from some levels of disaster.
l
Thorough, documented planning is required to respond properly under a number of stressful circumstances, and such planning is often incomplete. Policies need to comprehensively address information security issues without unnecessary duplication and overlap, and HIPAA Security compliance documentation needs to be conveniently stored and made available for routine use as well as in support of events and exceptional circumstances.
l
In order to mitigate the risks identified, compliance must be planned as an organized project. Not approaching security compliance as a managed, long-term project often results in an incomplete effort, started in more than one direction, with inconsistent, unfinished policies and no real staff training.We will show what policies and evidence you need to produce if you are audited by the HHS Office of Civil Rights. Now that
l
there is a legislative mandate to audit compliance, and a random audit plan under way, you need to be prepared to respond to audit requests. Not only are the compliance rules changed, but the enforcement rules have changed, with a new four-tier violation schedule with increased minimum and maximum fines, and mandatory fines for willful neglect of compliance that start at $10,000.
l
This Webinar will help health information professionals understand what are probably the biggest security issues they must face, what they have to do to mitigate the risks they present, and what to keep in mind as they move forward."
Jim Sheldon-Dean is the founder and director of compliance services at Lewis Creek Systems, LLC, a Vermont-based consulting firm founded in 1982, providing information privacy and security regulatory compliance services to health care firms and businesses throughout the Northeast and nationally. Sheldon-Dean’s firm provides a variety of advisory, training, assessment, policy development, project management and mitigation services for a number of health care providers, businesses, universities, small and large hospitals, urban and rural mental health and social service agencies, health insurance plans and health care business associates. He serves on the HIMSS Information Systems Security Workgroup, the Workgroup for Electronic Data Interchange Privacy and Security Workgroup, and co-chairs the WEDI HIPAA Updates sub-workgroup. He is a frequent speaker regarding HIPAA and information privacy and security compliance issues at seminars and conferences, including speaking engagements at AHIMA national conventions and WEDI national conferences, and before the New York Metropolitan Chapter of the Healthcare Financial Management Association, Health Information Management Associations of New York City, New York State, and Vermont, the Connecticut Hospital Association, and the Hospital and Health System Association of Pennsylvania. Sheldon-Dean has nearly 30 years of experience in policy analysis and implementation, business process analysis, information systems and software development. His experience includes leading the development of health care related Web sites; award-winning, best-selling commercial utility software; and mission-critical, fault-tolerant communications satellite control systems. ...more
Suggest a Topic
More Webinars
Your Necessity is our Priority
Areas Covered in the Session:
l
Why HIPAA Security Rule Compliance is Of Interest Today ¡ ¡ ¡ ¡
l
¡ Random HIPAA Audits The Top Five HIPAA Security Issues ¡ Managing PHI on Portable Devices and Remote Access by Staff and Vendors
¡
Preparing for Recovery from a Variety of Events Training in Security Awareness and Policies Creating Coherent Policies and Procedures
¡
Documenting HIPAA Security Compliance
¡ ¡
l
l
HIPAA Security Rule Requirements Meaningful Use Requirements Breach Notification Requirements HIPAA Audits Resulting from Complaints and Breaches
Managing Issues Related To Staff ¡ Technology Adoption ¡ Training Strategies Planning for Risk Mitigation ¡ ¡
HIPAA Security Compliance as a Project Cooperative Strategies
Click here to register for this webinar Who Will Benefit: l l l l l l l l l l l l
Compliance director CEO CFO Privacy Officer Security Officer Information Systems Manager HIPAA Officer Chief Information Officer Health Information Manager Healthcare Counsel/lawyer Office Manager Contracts Manager
It would be really nice if you can circulate this mail to all your deserving colleagues who can immensely benefit from this program. For more information, please contact the event coordinator. We look forward to seeing you at the webinar. Best regards, Event-coordinator MentorHealth
About MentorHealth MentorHealth is a comprehensive training source for healthcare professionals. Our trainings are high on value, but not on cost. MentorHealth is the right training solution for healthcare professionals. With MentorHealth, healthcare professionals can make use of the best benefits relating to their professional training. MentorHealth www.mentorhealth.com 1000 N West Street Suite, 1200 Wilmington DE 19801 Phone: 800-447-9407 or Fax your PO to: 302-288-6884 If you do not wish to receive this training alerts from GlobalCompliancePanel Click Unsubscribe