Sorting through all the complex security details in three new federal regulations is challenging -- but essential. These rules could help set a healthcare organization's security priorities.
And whether you're a business associate directly impacted by the regulations, or a service vendor helping organizations be compliant - you need to know the newest federal mandates.
Join us for this exclusive session in which noted experts will pinpoint the key provisions of a proposal to modify the HIPAA privacy and security rules, as well as two final rules for the federal electronic health record incentive program.
Our speakers will provide you with:
An explanation of how the HIPAA modifications would beef up requirements for business associates, hospitals and physicians;
A detailed description of the security components required for electronic health records software in the incentive program;
An analysis of what security steps hospitals and physicians must take to qualify for the incentives;
Answers to the questions that matter most to healthcare/security vendors.
The HITECH Act, part of the massive economic stimulus package, will provide as much as $27 billion in incentives to hospitals and physicians who implement certified EHRs. But qualifying for the incentive payments will be a challenging task that involves meeting tough security requirements.
In addition, the HITECH Act required HIPAA modifications that, among other things, clarify that business associates that serve health care organizations must comply with HIPAA.
In this session, you'll learn how to:
Comply with the meaningful use rule's mandate for risk assessments;
Interpret the meaningful use rule's requirements for protecting patient information;
Determine the specific EHR software security components required under the incentive program;
Understand what business associates must do to ensure they're in compliance with HIPAA;
Respond to patients' requests for timely access to their electronic records while maintaining security;
Address many other issues, including how to comply with patients' requests to restrict access to their records.
Borten, founder of The Marblehead Group, provides her clients with expertise in security, privacy, and health IT from over 20 years inside the healthcare industry. In the 1990s she led the enterprise-wide security program at Massachusetts General Hospital; and as Chief Information Security Officer, she established the first information security program at Beth Israel Deaconess Medical Center and CareGroup in Boston. Borten is a nationally-recognized expert on HIPAA and health information privacy and security, a frequent speaker on these topics, and author of tools and books including HIPAA Security Made Simple (HCPro 2013). The Marblehead Group, founded in 1999, provides HIPAA privacy and security risk assessments, compliance auditing, training, and solutions to the healthcare industry. Clients include the full range of providers, health plans, and business associates.
President, Tom Walsh Consulting
Walsh, CISSP, is president of Tom Walsh Consulting firm that advises healthcare organizations on risk management strategies, risk analysis, disaster recovery planning, security training, and remediation activities. Walsh also serves as information security officer at San Antonio Community Hospital on an outsourced basis. He serves as the information security consultant for several organizations including a community-based hospital, a multi-hospital health system, and a large physician organization. Prior to starting his own business nine years ago, Walsh's experience included being the first information security manager for a large, multi-hospital healthcare system in Kansas City.