Challenges facing health care organizations today are significant. Maintaining the functionality of information systems, as well as maintaining and enhancing security on those systems, is becoming more and more difficult and is now regulated by the Health Insurance Portability and Accountability Act (HIPAA).
The HIPAA security regulations are challenging to read, comprehend and implement comfortably for most organizations. Industry professionals have organized a day of discussing the HIPAA regulations amongst your peers and with industry professionals that work with the HIPAA regulations on a regular basis. The level of discussion will help organizations with one computer system to several thousand computers.
- HIPAA security confusion
- Security primer
- Current state analysis and planning
- Security program foundation
- Technical security measures
9:00 a.m. - 9:45 a.m.
A. Why Protect Individual Health Information?
B. Survey Of 'Hacks' And Attacks
9:45 a.m. - 10:30 a.m.
II. HIPAA Security Confusion
A. What Is HIPAA And Does It Apply To Me?
B. Where To Get Info
C. Enforcement And Penalties
D. Scalable And Flexible For Small And Large Offices
10:30 a.m. - 10:45 a.m.
10:45 a.m. - 12:00 p.m.
III. Security Primer
A. Administrative, Physical And Technical Controls
B. Baseline Security Principles
12:00 p.m. - 1:00 p.m.
Lunch (On Your Own)
1:00 p.m. - 1:45 p.m.
IV. Current State Analysis And Planning
A. Risk Assessment
B. Threat Analysis
C. Control Effectiveness And Assessment
D. Compliance Planning
1:45 p.m. - 2:30 p.m.
V. Security Program Foundation
B. Inventory Of Information And Classification
C. Physical And Environmental Protection
D. Standards And Procedures
2:30 p.m. - 3:00 p.m.
VI. Technical Security Measures
A. Operating Systems Controls
B. Network Security, Firewalls And Routers
3:00 p.m. - 3:15 p.m.
3:15 p.m. - 3:45 p.m.
VII. Monitoring And Enforcement
A. Systems Certification
B. Event Monitoring
C. Incident Response And Enforcement
3:45 p.m. - 4:00 p.m.
VIII. Backup And Recovery
A. Business Continuity Planning
B. Media Backup And Recovery
C. Media Disposal
4:00 p.m. - 4:30 p.m.
IX. Documentation And Justification
A. Preparing For Investigations
B. Documenting Your Decisions And Approach