Purchase any WEBINAR and get
10% Off
CODE: SAVE10
T&C applicable, please referFAQ
Validity : 14th Apr'24 to 24th Apr'24
How to do a HIPAA and HITECH Risk Analysis
- What is risk analysis?
- Why do you need to do one?
- How to do one
- Assemble a good team
- Identify assets
- Identify risks
- Quantify risks
- Select reasonable, appropriate, and cost effective security measures
- Test and revise security measures
- Particular areas to focus on (portable devices, social media, email, and the like)
Overview of the webinar
A key requirement of the HIPAA and HITECH regulations is that covered entities and business associates must conduct a comprehensive and thorough assessment of the potential risks and vulnerabilities to the Confidentiality, Integrity, and Availability (CIA) of all electronic Protected Health Information (EPHI). These HIPAA and HITECH mandates require that organizations must complete a comprehensive and thorough vulnerability assessment on a regular schedule.
Who should attend?
- HIPAA compliance Officers
- HIPAA Security Officers
- HIPAA Privacy Officers
- Human Resources Directors
- Business Office Managers
- Medical Records Personnel
- Health Care Attorneys
- Patient Accounts Managers
- Business Associates
Why should you attend?
The majority of the DHHS civil money penalties and settlements in lieu thereof involve, sometimes with other violations, failure to perform a written risk analysis. These penalties usually are in the seven figure range. Blue Cross Blue Shield of Tennessee, for example, settled for $1.5 million for failing to update its risk analysis when its physical security situation changed. Other seven-figure settlements involved failure to do the required initial risk analysis.
Faculty - Mr.Jonathan P. Tomes
Jonathan P. Tomes is a national HIPAA compliance consultant and attorney admitted in Illinois, Missouri, Kansas, and Oklahoma who practices in Kansas City, Kansas, and the greater Kansas City area. After he had retired from the U.S. Army as a JAGC officer, having been a military judge (which taught him how to read and interpret government regulations) and having spent several years as a military intelligence officer (which taught him about gathering and using information), he taught law at IIT Chicago-Kent College of Law before he opened his own private law practice. Mr. Tomes is President of EMR Legal, a national HIPAA compliance consulting firm. EMR Legal has consulted and trained over 1,000 HIPAA clients since 1998, ranging from Federal, State and County governments to large hospitals to small practices. Jon is currently working on an online HIPAA training video and an online HIPAA risk assessment.