Healthcare, Cybersecurity, and HIPAA - New Threats and New Guidance

Why Should You Attend:

Cybersecurity has become one of the key issues for healthcare as malicious actors seek to interfere with healthcare delivery systems by locking up and/or destroying data and even physical systems, or even denying Internet access to broad areas of the country. The threats have only begun and promise to become more serious and more damaging. Cybersecurity threats are high impact, high likelihood events of the highest risk level.

In this session, we will examine how following the requirements of the HIPAA Security Rule and specifically taking into consideration cyber-threats can help a healthcare entity prepare itself to defend against cyber-attacks and the significant impacts to privacy, security, and patient care and safety that can result. You will learn about the latest guidance and tools for assisting in preparation and response to cyber-attacks, and what to do if the attack is successful and creates an incident that must be managed and recovered from.

We will discuss the NIST Cybersecurity Framework and its five steps to deal with Cyber-risk: Identify the assets you wish to protect, Protect those assets, Detect any threats to the assets, Respond to the threats, and then Recover from the event. The four tiers of implementation will be described, and the steps in establishing a Cybersecurity program will be explained.

Areas Covered in the Webinar:

• How the HIPAA Security Rule addresses Cybersecurity, and how to use the rule to prevent cyber-attacks
• How Cybersecurity is different from other kinds of security issues and why it deserves special attention
• The NIST Cybersecurity Framework and how to use it to prepare for and respond to Cybersecurity events
• New initiatives by HHS to provide resources and information to assist during a wave of cyber-attacks
• The importance of regular, repeated training to help prevent the initiation of an attack on your systems
• How to respond to and follow up on an attack that may result in a breach of information
• Recommendations for preventing and responding to Cybersecurity attacks involving Ransomware

Who Will Benefit:

This webinar will provide valuable assistance to all personnel in Medical offices, practice groups, hospitals, academic medical centers, insurers, business associates (shredding, data storage, systems vendors, billing services, etc). the titles are:

• Compliance Director
• CEO
• CFO
• Privacy Officer
• Security Officer
• Information Systems Manager
• HIPAA Officer
• Chief Information Officer
• Health Information Manager
• Healthcare Counsel/Lawyer
• Office Manager
• Contracts Manager

Instructor Profile:

Topic Background:

Healthcare information has been protected according to regulations under the Health Insurance Portability and Accountability Act (HIPAA) since 2003 but new attacks by malicious external actors (hackers) pose new threats to the confidentiality, integrity, and availability of Protected Health Information (PHI). The National Institute of Standards and Technology (NIST) has released Cybersecurity guidance to assist with preparations to avoid and respond to threats, and HHS has launched a new Healthcare Cybersecurity Communications Integration Center (HCCIC) to assist healthcare entities in the event of cyber-attacks.