WHO SHOULD ATTEND: Security and privacy officers, health IT and compliance leaders who participate in the development and implementation of information security and data privacy programs and attorneys representing these program areas.
OVERVIEW: Cybersecurity and patient privacy risks are not new to the healthcare industry. While the digital footprint of our patients and customers has increased, so has our exposure to cyber criminals and the difficulty with protecting patient privacy. Cybersecurity and data privacy risk management strategies have commonality but also have many unique considerations for providers to navigate. This data privacy and cybersecurity training event will provide ideas and solutions for compliance programs, and for what you can do to protect your patients’ data and systems from compromise. We will also walk participants through a breach response exercise and provide insights for responding to a security incident.
- Describe current compliance requirements for data privacy and cybersecurity;
- Discuss key risks and challenges facing the healthcare industry;
- Facilitate an exercise in developing a data privacy and cybersecurity program;
- Facilitate a security incident and breach response exercise;
- Discuss the responsibilities of the Privacy and Security Officer;
- Understanding recent attacks on healthcare organizations;
- Identify common vulnerabilities;
- Discuss strategies and tactics for preparing for ransomware; and
- Discuss incident response strategies.
9:30 a.m. Registration
10:00 a.m. Welcome and Introduction
10:15 a.m. Regulatory Update: Privacy & Security
11:45 a.m. Break & Working Lunch
12:15 p.m. Privacy & Security Program Development
1:45 p.m. Group Exercise – Breach Risk Assessment
2:15 p.m. Role of the Privacy and Security Officer
3:00 p.m. Ransomware Today: Healthcare’s Greatest Risk
4:00 p.m. Closing Remarks and Adjournment
MEET YOUR FACULTY
Paul Douglas, CISA, CCSFP, Director, P&N Consulting Services Group, Paul focuses on IT risk advisory, data privacy and security strategies, and IT compliance. He helps clients navigate complex security and privacy laws and turn them into strategic action plans. He works with a broad base of clients in the healthcare, technology, financial institution, and education industries. He has experience serving clients related to a variety of standards.
Brad Pierce, Director of Network Security; HORNE Cyber, With more than 15 years of experience in IT and cybersecurity, Brad focuses on collaborating with executive leadership teams to strengthen their security posture. He has experience working with organizations in various industries to uncover and remediate vulnerabilities and develop and implement security programs. In his current position, Brad manages HORNE Cyber’s cybersecurity operations center where he, along with a team of cyber analysts, monitors live network traffic for clients in search of active threats.
Log in online to register. VISA, Master Card, Discover or American Express are accepted. Email confirmations will be sent to all registrants who list an accurate email address.
Cancellations received in writing up to one week prior to a scheduled event will be charged a cancellation fee of $40 (per person, per event). Registrants who are unable to attend an LHA educational event are permitted to, and encouraged to send a substitute without incurring a cancellation fee. Please send written notice of any substitutions prior to the scheduled event. Cancellations received less than one week prior to the scheduled event, or individuals who fail to attend will result in a non-refundable registration fee.
Transfer requests must be in writing and received one week prior to the event to receive a credit to use at a later date. A $40 transfer fee will be charged. The LHA will hold your credit for a period of one year following the start date of the program for which you were originally registered. Transfer requests received less than one week prior to event will result in a non-refundable registration fee.
AMERICANS WITH DISABILITIES ACT
The LHA will make every effort to provide reasonable accommodations for physically-challenged attendees who require special services. When registering, please attach a written description of needs to the application.