You can only gain access to certain items and special pricing if you have logged in. Login Now.

WEDI Regional Affiliate Meeting: Risk Analysis: The Foundation of a Security Program

William Miaoulis, CISA, CISM

Format:
Electronic (digital download/no shipping)

Affiliate Member, For-Profit Member, Gold Premium Member, Government Member, Guest, Individual Member, Non-Profit Member, NonMember, Platinum Premium Member, Student, eMember - $0.00
Gold Premium Member, Government Member, Guest, Individual Member, NonMember, Platinum Premium Member, Student - $0.00

Description:

The HIPAA security rule requires every covered entity (CE) to conduct a risk analysis to determine security risks and implement measures “to sufficiently reduce those risks and vulnerabilities to a reasonable and appropriate level.” In addition to attest for Meaningful Use and organization must complete a HIPAA Risk Analysis and implement a Risk Management Program. All levels of the organizations must be involved in security and Risk Analysis / Risk Management provides the mechanism to ensure organizations prioritize risk appropriately and address the highest risk to the confidentiality, integrity and availability of electronic Protected Health Information. Covered entities must make security decisions on what is appropriate for their specific environment and risk analysis is the tool to ensure that risk mitigation activities are reasonable for a specific environment. This presentation reviews the regulatory requirements for security risk analysis and management and offers a practical approach on how to comply with these requirements. William Miaoulis, CISA, CISM, is a senior healthcare information system (IS) professional with more than 20 years of healthcare Information Security experience. Bill is the founder and primary consultant for HSP Associates. Prior to starting HSP Associates in January of 2013, Bill was the Chief Information Security Officer (CISO) and led the HIPAA security and privacy consulting efforts for Phoenix Health Systems for over 11 years and also was the HIPAA Consulting Manager for SAIC for 18 months. For seven years, Miaoulis was the University of Alabama Birmingham (UAB) Medical Center’s Information Security Officer, where he instituted the first security and privacy programs at UAB starting in October 1992. Miaoulis contributes to the industry by frequently speaking at conferences on security matters, including recent sessions on Risk Analysis/Risk Management, Creating and Implementing Effective Security Policies, Understanding the HIPAA Security Rule, and Creating Effective Security Incident Response Procedures. Miaoulis has been interviewed and quoted by numerous publications including: SC Magazine, Health Data Management, Briefings on Healthcare Security, Computerworld; and Health Information Compliance Insider. Miaoulis has worked with AHIMA to produce the book “Preparing for a HIPAA Security Compliance Assessment” and also has worked on updating the AHIMA Security Practice Briefs. Additional information can be found at www.hipaasecurityandprivacy.com .

Product Details:

Product ID: MISC-68
Publication Year: 2013