HIPAA and the Meaningful Use incentive program requires security and privacy risk analysis be performed on a routine basis and recommends they be made a part of a 'Culture of Compliance' which defines the organization's compliance program. Both the Security Risk Analysis (SRA) and Privacy Risk Analysis (PRA) are detailed and complex undertakings. But there are methodologies, frameworks and other tools available in the marketplace to assist in performing these analyses. This presentation will provide a relatively simple methodology and strategies for performing and documenting these crucial tasks. The presentation will also illustrate that organizational liability for HIPAA, as well as other enforcement agencies will be impacted by performing these analyses as proscribed.
Why should you attend: HIPAA and other forms of privacy and security investigations, enforcement and audits are at an all-time high. Being proactive with privacy and security compliance, especially in the areas of security and privacy risk analysis will reduce risks of penalties, lawsuits and other unwanted effects from violations. This presentation offers strategies and information that will assist any organization in planning and performing security and privacy risk analysis.
Areas Covered in the Session: