This 90-minute webinar training will look at how to properly conduct a risk analysis. Attendees will learn what safeguards need to be in place, what documentation is required, and what follow-through needs to be done. The course will examine the pros and cons of various available free tools, and in-house versus outsourced reviews.
The results of prior enforcement actions and HHS audits (and their penalties), especially those relating to risk analysis, will be discussed, including recent actions involving multi-million dollar fines and settlements. In addition, new trends in information security risks will be discussed so you can start to plan for the work you'll need to do to stay in compliance and keep patient information private and secure.
There are tools freely available that can help in the performance of a risk analysis, but a risk analysis takes more than tools, it takes an understanding of what to examine and how to consider what you find, to create a coherent analysis of the risks to your electronic PHI. This session will focus on how you can use the tools as part of an analysis process to give you actionable plans and documentation of considerations made in the process.
Why Should You Attend:
The webinar will discuss the HIPAA audit and enforcement regulations and processes, and how they apply to HIPAA covered entities and business associates. It will explain the recent changes that increased fines and created new penalty levels, including new penalties for willful neglect of compliance that begin at $10,000. The course will explore what kind of issues and what kind of entities had the most problems, and show where entities need to improve their compliance the most, and also explore the typical risk issues that lead to breaches of health information and see how those issues may be a target for auditors in 2018.The results of prior enforcement actions and HHS audits (and their penalties), especially those relating to risk analysis, will be discussed, including recent actions involving multi-million dollar fines and settlements. In addition, new trends in information security risks will be discussed so you can start to plan for the work you'll need to do to stay in compliance and keep patient information private and secure.
There are tools freely available that can help in the performance of a risk analysis, but a risk analysis takes more than tools, it takes an understanding of what to examine and how to consider what you find, to create a coherent analysis of the risks to your electronic PHI. This session will focus on how you can use the tools as part of an analysis process to give you actionable plans and documentation of considerations made in the process.
Areas Covered in the Webinar:
- What the HIPAA Security Rule requires
- What meaningful use Objective 15 requires
- What a good risk analysis is and isn’t
- Risk analysis tools and methods
- The policies you should have for security compliance
- Finding and filling any gaps in your policies and procedures
- How to perform risk assessment and analysis
- Planning the continuing management of your risks
- Planning your next reviews and your information security management process
Who Will Benefit:
This webinar will benefit professionals working in medical offices, practice groups, hospitals, academic medical centers, insurers, business associates (shredding, data storage, systems vendors, billing services, etc.). The titles are:- Compliance Director
- CEO
- CFO
- Privacy Officer
- Security Officer
- Information Systems Manager
- HIPAA Officer
- Chief Information Officer
- Health Information Manager
- Healthcare Counsel/Lawyer
- Office Manager
- Contracts Manager
Course Provider
Jim Sheldon-Dean,
