Sorting through all the complex security details in three new federal regulations is challenging -- but essential. These rules could help set a healthcare organization's security priorities.
And whether you're a business associate directly impacted by the regulations, or a service vendor helping organizations be compliant - you need to know the newest federal mandates.
Join us for this exclusive session in which noted experts will pinpoint the key provisions of a proposal to modify the HIPAA privacy and security rules, as well as two final rules for the federal electronic health record incentive program.
Our speakers will provide you with:
An explanation of how the HIPAA modifications would beef up requirements for business associates, hospitals and physicians;
A detailed description of the security components required for electronic health records software in the incentive program;
An analysis of what security steps hospitals and physicians must take to qualify for the incentives;
Answers to the questions that matter most to healthcare/security vendors.
The HITECH Act, part of the massive economic stimulus package, will provide as much as $27 billion in incentives to hospitals and physicians who implement certified EHRs. But qualifying for the incentive payments will be a challenging task that involves meeting tough security requirements.
In addition, the HITECH Act required HIPAA modifications that, among other things, clarify that business associates that serve health care organizations must comply with HIPAA.
In this session, you'll learn how to:
Comply with the meaningful use rule's mandate for risk assessments;
Interpret the meaningful use rule's requirements for protecting patient information;
Determine the specific EHR software security components required under the incentive program;
Understand what business associates must do to ensure they're in compliance with HIPAA;
Respond to patients' requests for timely access to their electronic records while maintaining security;
Address many other issues, including how to comply with patients' requests to restrict access to their records.
Borten, founder of The Marblehead Group, provides her clients with expertise in security, privacy, and health IT from over 20 years inside the healthcare industry. In the 1990s she led the enterprise-wide security program at Massachusetts General Hospital; and as Chief Information Security Officer, she established the first information security program at Beth Israel Deaconess Medical Center and CareGroup in Boston. Borten is a nationally-recognized expert on HIPAA and health information privacy and security, a frequent speaker on these topics, and author of tools and books including HIPAA Security Made Simple (HCPro 2013). The Marblehead Group, founded in 1999, provides HIPAA privacy and security risk assessments, compliance auditing, training, and solutions to the healthcare industry. Clients include the full range of providers, health plans, and business associates.
Founder and Managing Partner, tw-Security
Tom Walsh, CISSP, is the Founder and Managing Partner of tw-Security, a nationally recognized healthcare security firm that began in 2003. Tom is a co-author of four books on healthcare information security. He is frequently a speaker at national conventions and is often quoted in trade journals. Tom has over 28 years of information security experience.