2014 - How to do a Risk Analysis - Webinar By MentorHealth
Date2014-02-13
Deadline2014-02-12
Venueonline event, USA - United States
Keywordsonline healthcare trainings; online hipaa training; Medical Training
Websitehttps://bit.ly/1azIvte
Topics/Call fo Papers
Overview: If you cannot remember the last time your organization performed a HIPAA & HITECH Act Risk Analysis, or if you are unsure if your organization has ever performed a Risk Analysis, then this is the webinar for you. Jonathan P. Tomes will cover how to conduct a risk analysis and how to update it as necessary. Failure to conduct a written risk analysis qualifies as "willful neglect," which carries the highest civil money penalty ("CMP") and which penalty cannot be waived by DHHS as can violations due to a reasonable cause.
Because a risk analysis is a required implementation specification under the Security Rule, failure to do one is willful neglect. And the civil money penalties are not the only sanctions for not doing a risk analysis. The remediation costs for a breach that might have been prevented had a risk analysis been done can be much more than the CMP. Blue Cross Blue Shield of Tennessee not only had to pay the $1.5 million settlement, but also it incurred $17 million in remediation costs-costs that might have been avoided had it done an updated risk analysis.
Why should you attend: The majority of the DHHS civil money penalties and settlements in lieu thereof involve, sometimes with other violations, failure to perform a written risk analysis. These penalties usually are in the seven figure range. Blue Cross Blue Shield of Tennessee, for example, settled for $1.5 million for failing to update its risk analysis when its physical security situation changed. Other seven-figure settlements involved failure to do the required initial risk analysis.
Areas Covered in the Session:
What is risk analysis?
Why do you need to do one?
How to do one
Assemble a good team
Identify assets
Identify risks
Quantify risks
Select reasonable, appropriate, and cost effective security measures
Test and revise security measures
Particular areas to focus on (portable devices, social media, email, and the like)
Case study (will walk webinar attendees through the process)
Questions and answers
Who Will Benefit:
HIPAA compliance Officers
HIPAA Security Officers
HIPAA Privacy Officers
Human Resources Directors
Business Office Managers
Medical Records Personnel
Health Care Attorneys
Patient Accounts Managers
Business Associates
Jonathan P. Tomes , J.D., is a health care attorney and partner in the law firm of TOMES & DVORAK, CHARTERED. He has written more than 50 books, including The Compliance Guide to HIPAA and the DHHS Regulations, and dozens of articles in the area of HIPAA compliance.
MentorHealth
webinars-AT-mentorhealth.com
Phone No: 800-385-1607
FaX: 302-288-6884
Event Link: http://bit.ly/1azIvte
Because a risk analysis is a required implementation specification under the Security Rule, failure to do one is willful neglect. And the civil money penalties are not the only sanctions for not doing a risk analysis. The remediation costs for a breach that might have been prevented had a risk analysis been done can be much more than the CMP. Blue Cross Blue Shield of Tennessee not only had to pay the $1.5 million settlement, but also it incurred $17 million in remediation costs-costs that might have been avoided had it done an updated risk analysis.
Why should you attend: The majority of the DHHS civil money penalties and settlements in lieu thereof involve, sometimes with other violations, failure to perform a written risk analysis. These penalties usually are in the seven figure range. Blue Cross Blue Shield of Tennessee, for example, settled for $1.5 million for failing to update its risk analysis when its physical security situation changed. Other seven-figure settlements involved failure to do the required initial risk analysis.
Areas Covered in the Session:
What is risk analysis?
Why do you need to do one?
How to do one
Assemble a good team
Identify assets
Identify risks
Quantify risks
Select reasonable, appropriate, and cost effective security measures
Test and revise security measures
Particular areas to focus on (portable devices, social media, email, and the like)
Case study (will walk webinar attendees through the process)
Questions and answers
Who Will Benefit:
HIPAA compliance Officers
HIPAA Security Officers
HIPAA Privacy Officers
Human Resources Directors
Business Office Managers
Medical Records Personnel
Health Care Attorneys
Patient Accounts Managers
Business Associates
Jonathan P. Tomes , J.D., is a health care attorney and partner in the law firm of TOMES & DVORAK, CHARTERED. He has written more than 50 books, including The Compliance Guide to HIPAA and the DHHS Regulations, and dozens of articles in the area of HIPAA compliance.
MentorHealth
webinars-AT-mentorhealth.com
Phone No: 800-385-1607
FaX: 302-288-6884
Event Link: http://bit.ly/1azIvte
Other CFPs
- The Role of HIPAA in an Increasingly Unregulated and Under-Regulated World of Devices and Obamacare - Webinar By MentorHealth
- The Consolidated Omnibus Budget Reconciliation Act (COBRA) is Alive and Well ? Understanding COBRA
- HIPAA ICD-10 - Webinar By MentorHealth
- Calll for Papers Volume-4 Issue-3 (March 2014)
- Healthcare Marketing: Beyond the Anti-Kickback Statute and the Regulations - Webinar By MentorHealth
Last modified: 2014-01-10 15:51:43