Skip to main content

How to Conduct a HIPAA Security Risk Assessment per NIST guidance


Overview
This course will cover the proper methodologies on conducting a HIPAA Risk Assessment based on the formula used by Federal auditors and via the guidelines of the NIST (National Institute of Standard for Technologies). The course will also cover the most important aspects to be aware of in terms of the Federal auditing process as well as the new risks regarding patients suing for wrongful disclosures.
Why should you attend this webinar?
Have your done a HIPAA Security Risk Assessment? What about a full scope HIPAA Security/Privacy Risk Assessment?
Do you know a risk assessment is the first thing the Feds will ask for in an OCR audit and may also be required should litigation be brought against the organization?
Is your risk assessment adequate?
Do you have written policies in place for every single one of the implementation specification of the HIPAA Security Rule (even ones that don't apply) - do you know this is required!!
I will show how to conduct a PROPER risk assessment point by point and how to also avoid scams in the market. We will also be discussing the absolute importance of doing a risk assessment and that this is the first thing the OCR will ask for. I will instruct the listeners on how to write proper policies and procedures which are to be based upon the findings of the risk assessment and how to word the policies to satisfy the Fed. We will also discuss the importance of having policies which are consistent with your procedures and also discuss the negative ramification of cookie cutter templates in the eyes of the Federal government.
Areas Covered in the Session:
  • Updates for 2018
  • Policies and Procedures
  • Risks
  • Business associates and the increased burden
  • Conduct a NIST based HIPAA Security Risk Assessment for a hypothetical organization
  • Practice managers
  • Any business associates who work with medical practices or hospitals (i.e. billing companies, transcription companies, IT companies, answering services, home health, coders, attorneys, etc)
  • MD's and other medical professionals
Who can Benefit:

  • Private practice
  • Hospitals
  • Billing companies
  • Transcriptions companies
  • Home health groups
  • Health insurance
  • Ambulatory
  • IT companies
  • Attorneys
  • Practice Managers Associations
  • Healthcare and any entities doing business with healthcare as "business associate"

Comments

Popular posts from this blog

HIPAA changes 2018 and How to comply?

Compliance Key INC  -  HIPAA W ebinar                                                   Brian L Tuttle Brian Tuttle is Keynote Speaker at Compliance key Inc . He is Certified Professional in Health IT (CPHIT), Certified HIPAA Professional (CHP), Certified Business Resilience Auditor (CBRA) with over 17 years experience in Health IT and Compliance Consulting.     Webinar Id:   HIPHBLT001 10:00 AM PT | 01:00 PM ET  01/23/2018 Duration: 90 mins  Overview This lesson will be addressing how practice/business managers (or compliance offers) need to get their HIPAA house in order as HIPAA is now fully enforced and the government is not using kid gloves any more. It will also address major changes under the Omnibus Rule, Trump administration, and any other applicable updates for 2018 and beyon...

Strategies for Becoming a Business Partner to Your Healthcare Leaders.Compliance Key INC -

Compliance Key INC  -  Healthcare Training Online                                                    Jay Anstine Mr. Anstine's professional background includes working on the provider and the payer side of the market, for large for-profit and non-profit health systems, and small physician-owned entities. In tackling the countless regulatory and operational issues for these diverse organization types, he has developed a deep understanding of the business of healthcare and the regulations that govern the industry.  Webinar Id:  LSHCSJA022  10:00 AM PT | 01:00 PM ET  12/13/2017  Duration 60 mins  Overview All too often compliance is seen as an obstacle or otherwise viewed negatively by healthcare leaders. This presentation will discuss strategies and insights to help the compliance of...

Oversight & Signatures

Compliance Key INC - Medical Device Training                                            Jennifer L. Searfoss Jennifer is the Managing Owner and Chief Solutions Strategist of SCG Health, LLC since 2011. SCG Health is a boutique value improvement organization focused on creating value in healthcare through workflow optimization, revenue cycle management and strategic planning in this post-health reform industry.   Webinar Id:  LSHCOJ001   12:30pm PT | 03:30pm ET  12/07/2017  Duration 60min mins  Overview CMS and other payers are cracking down on rules for signatures used on claims and orders - missing signatures and improper supervision of orders is an easy way for payers to pull back otherwise legitimate payments from your practice. Get the low-down on signature rules (including signature stamps) and how ...