HIPAA Security Rule Enforcement: Prepare for an audit at your facility
Product Description:
AUDIOCONFERENCE ON CD OR AUDIO ON-DEMAND
Sponsored by Briefings on HIPAA
presented on April 9, 2008
How would your organization fare if the government sent inspectors to conduct a HIPAA security audit?
After years in existence but with relatively little enforcement, the government is getting serious about the HIPAA security rule. To step up enforcement and ensure organizations comply, CMS and the OIG are conducting audits and security reviews.
Are you ready for a surprise audit? Would your organization pass the auditors’ scrutiny? During this 90-minute audioconference, our expert speakers will tell you what you need to know to be in compliance with the security rule, what you need to do to avoid an audit, and—most importantly—what to do if you find yourself facing an audit.
Many audits will be triggered by patient complaints dealing with security problems. Others will be conducted at random. Without enforcement through the years, many organizations have spent less time conducting security risk analyses and updating security practices. Advances in technology and new security threats may even mean your practices are outdated.
The damage to your organization’s good reputation and financial penalties can be avoided with smart compliance practices. This audioconference offers audit-readiness and best practice strategies to help you avoid compliance risks.
Note:
This is an intermediate-level program. Participants should be familiar with HIPAA privacy and security rule requirements and aware of their organization’s HIPAA compliance position.
Take a look at our agenda:
- Possibility of a HIPAA security audit: Why is this year different?
- Updates on the enforcement front, including OIG, CMS and OCR plans
- Legislative/regulatory updates
- Election year
- GAO report increases pressure
- Triggers for an OIG/CMS HIPAA security audit
- Rapidly changing environment
- Complaints
- Region
- What will the auditors look for?
- Documentation
- Written policies and procedures
- Formalized risk analysis
- Risk management process and plan
- Information security management process
- Compliance with each and every standard
- Risk beyond HIPAA (e-mail, laptops, remote access, wireless)
- Where should I be in compliance with the HIPAA security rule?
- Compliance definition
- Evaluations: A critical component
- Document and monitor compliance under each and every standard and implementation feature
- What should I do if I’m selected for an audit?
A question and answer sessions follows the presentation
LEARNING OBJECTIVES
At the conclusion of this audioconference, you will be able to:
- Discuss the reasons why HIPAA security rule enforcement is on the rise in 2008
- Recognize the likely triggers and drivers of an audit candidate
- List the compliance elements on which a HIPAA security audit will focus
- Identify ways to achieve and maintain HIPAA security compliance
- Recognize what will occur if you are selected for a security audit or review
FEATURED SPEAKERS
William Miaoulis, CISA, CISM, a senior healthcare information systems professional and HIPAA leader for Phoenix Health Systems in Dallas, assists healthcare organizations with information security, information security risk management programs, contingency planning and HIPAA. He has more than 14 years experience in healthcare information security and previously serves as the information security officer at the University of Alabama Birmingham. He is a frequent conference speaker on security matters, risk analysis/risk management, the HIPAA security rule, and incident response procedures.
John Parmigiani, MS, BES, is the president of John C. Parmigiani & Associates, LLC in Ellicott City, MD. He has more than 35 years experience in information systems management in both the public and private sectors. The former Director of Enterprise Standards for the Health Care Financing Administration (HCFA), now the Centers for Medicare & Medicaid Services (CMS), he was the chairman of the government-wide HIPAA Administrative Simplification Security and Electronic Signature Standards Implementation Team that created the security rule and was a member of the federal committee that oversaw the development and implementation of the HIPAA transactions and code sets and the privacy rule.
BONUS MATERIAL INCLUDED IN YOUR MATERIALS PACKET!
In addition to the expertise and advice presented during this audioconference, you'll also receive a slide presentation of the program materials and copies of the following:
- CMS Guidance on Remote Access and portable Device Security
- CMS HIPAA Guidance Documents Security Series 1–6
These materials are provided with PDF links.
WHO SHOULD LISTEN?
Information security officers, information privacy officers, compliance officers, administrators and executive level management (CEO/CIO/CFO), IT managers and staff, health information managers, risk management staff, and legal counsel. Physicians, nurses, and human resource officers may also benefit from listening to this program.
AUDIO ON-DEMAND
In addition to the regular purchase options for HCPro audioconferences, we are pleased to offer another option, an audio on-demand. Audio on-demand allows you to download the program and play it back at your convenience through your computer or MP3 player. Purchase a CD or audio on-demand of the program and listen when you can. It's also a perfect training tool for new staff or as a refresher for veteran staff.
Product Types : Departments :
