Description:

In an era where the healthcare sector increasingly relies on technology and data, protecting patient information is most important. The Health Insurance Portability and Accountability Act (HIPAA) has been the cornerstone of safeguarding patient privacy and protecting sensitive health data's confidentiality. One of the foundational requirements of HIPAA compliance is conducting a risk assessment.

A HIPAA Risk Assessment is not merely a regulatory requirement; it’s a fundamental step in ensuring the security of patient information. Its primary purpose is identifying vulnerabilities in how healthcare organizations handle protected health information (PHI). HIPAA risk assessments help identify and implement the most effective and appropriate administrative, physical, and technical safeguards to secure electronic protected health information.

A risk analysis is a requirement in federal law. Conducting a risk analysis is the first step in identifying and implementing safeguards that comply with and carry out HIPAA standards and implementation specifications. Your healthcare organization should determine the most appropriate way to achieve HIPAA compliance, considering the characteristics of the organization and its environment.

The webinar explores the multifaceted process of conducting a HIPAA risk assessment. It outlines the steps from forming a dedicated team to defining the scope, identifying PHI sources, conducting risk analysis, and prioritizing mitigation efforts. Furthermore, it underscores the significance of regular reviews and updates, emphasizing that a risk assessment is not a one-time chore but an ongoing commitment to security and compliance. The outcome of the risk assessment process is a critical factor in assessing whether an implementation specification or an equivalent measure is reasonable and appropriate.

Webinar Highlights:

• Risk assessment under the HIPAA laws.
• Vulnerability, threat, and risk analysis.
• Scope of risk assessment.
• Identifying potential threats and vulnerabilities.
• Assessing security measures in place.
• Determining threat occurrence, likelihood, and impact.
• Finalize documentation of the risk assessment.
• Review and regularly update risk assessments for new employees, laws, and technology.
• The surprising danger of not doing a HIPAA risk assessment.

Why Should You Attend:

In an age where data breaches and privacy lapses are headline news, the importance of HIPAA risk assessment cannot be overstated. Beyond the legal obligations, the real-world dangers can be unexpected and harsh. Legal Violations, data breaches, financial penalties, reputation damage, and operational disruption are just a few of the outcomes that organizations may face when they disregard this fundamental aspect of HIPAA compliance.

Who Should Attend:

• Healthcare Law Attorneys 
• Medical directors of health facilities
• Private Medical Office Managers 
• Healthcare Managers and Executives.
• Corporate Counsel in healthcare
• Healthcare Administrators
• Corporate compliance officers
• Human Resource directors and departments.

Presenter Information:

Name: Mark R Brengelman

Mark holds Bachelor’s and Master’s degrees in Philosophy from Emory University and a Juris Doctorate from the University of Kentucky.

Retiring as an Assistant Attorney General, he now represents:

• Healthcare professionals
• Two government healthcare licensure boards
• A government ethics commission
• Parents and kids in confidential child abuse and neglect cases, termination of parental rights, and adoption proceedings

Mark is a frequent continuing education presenter including national organizations around the country.  He helps his clients navigate the law and ethics and make the rules understandable as applied to them.

Mark has worked for all three branches of government.