The Mayo Clinic recently fired six employees for inappropriately accessing one patient's records. The high-profile announcement helped call attention to the need to address internal threats and set policies for dealing with privacy violations as part of a HIPAA and HITECH Act compliance strategy.
Until now, many hospitals and clinics have focused on external threats, taking steps to guard against security breaches. But internal threats may pose an even greater risk.
Join us for this exclusive session, where you'll learn:
The major internal threats that can put protected health information in jeopardy;
The roles that specific security technologies can play in addressing these threats, as well as their limitations;
The essential elements of creating a corporate culture that values privacy and security.
The HITECH Act toughens the penalties for violations of the HIPAA privacy and security rules, making it more important than ever for healthcare organizations to mitigate all security threats.
Healthcare organizations considering strategies for ensuring the privacy and security of protected health information often neglect to address a major area of risk: insider threats.
The actions and behaviors of those trusted to properly use and secure protected health information have the potential to pose a bigger threat than an external attack.
How can you guard against employees snooping at patient records they're not authorized to view? Or staff members taking patient identifiers from records to commit fraud?
In this exclusive session, a hospital security officer who's developed a comprehensive strategy for addressing internal threats will provide timely insights. You'll learn how to:
Identify the internal risks that can jeopardize the privacy and security of patient information;
Determine the roles that specific security technologies can play in addressing those threats and understand their limitations;
Create privacy and security policies and educate staff;
Determine appropriate sanctions for violations of those policies;
Create a corporate culture that values privacy and security;
Monitor workforce activity while maintaining worker privacy.
Premium Members Only
OnDemand access to this webinar is restricted to Premium Members.
Chief Information Security Officer, City of Portland
Prior to his role at the City of Portland, Paidhrin was the security administration and integrity manager in the compliance division of PeaceHealth, a healthcare delivery system in the Pacific Northwest, where he worked for 14 years. He previously served as PeaceHealth's IT security compliance officer. Prior to PeaceHealth, Paidhrin worked for many years in IT and business operations in higher education, the private sector and entrepreneurial environments, where he has held numerous director-level positions. He has also presented at numerous industry events.