The US Health and Human Services (HHS) conducts periodic audits of providers and Business Associates to ensure their compliance with the HIPAA Security and Privacy Rule, and to make sure they are in accordance with breach notification standards. This is mandated in Section 13411 of the Health Information Technology for Economic and Clinical Health (HITECH) Act.
To implement this mandate, the OCR has partnered with KPMG and conducted HIPAA/HITECH audit program of 115 health care organizations to assess their privacy and security compliance. The lessons imparted by this program are considered best practices for this audit.
Imparting best practices
MentorHealth, an esteemed provider of professional trainings for the healthcare industry, will make these lessons and best practices available for participants through a webinar it is going to organize. To enroll for this webinar; just log on to http://www.mentorhealth.com/control/w_product/~product_id=800852LIVE/
This aim of this webinar is to teach participants the ways of implementation and tracking of HIPAA audit best practices in a healthcare setup that prepares for the federal audit using published Office of Civil Rights (OCR) audit protocols.
The speaker at this webinar is Srini Kolathur, HITPro, CISSP, CISA, CISM, MBA; who has several years of experience in helping companies effectively meet and exceed regulatory compliance requirements including SOX, PCI, HIPAA, etc. by using best practices. Srini will help participants get a thorough idea of how to understand the core elements of this program. He will take participants through the ways of implementing and tracking of HIPAA audit best practices in a healthcare setup that needs to prepare for the federal audit using published OCR audit protocols.
Getting all processes right
All the nuances of the audit program, such as audit process, documentation requirements, and implementation specifications of the HIPAA privacy, security and breach rules will be explained and made easy to understanding.
Participants at this webinar will be able to not only prepare for the federal HIPAA audit but also improve the security posture of their organizations by adopting to changing technology (mobile, social media, Health Information Exchange(HIE), cloud services, etc.) and threat landscape perspective as well.
During the course of this webinar, Srini will also share the best practices used for HIPAA security implementation and continuous risk assessment, to which auditors for the HIPAA security compliance program have given the collective name “due diligence”.
This webinar will cover the following areas:
o Healthcare Technology Adoption/Trends
o Healthcare Regulatory (HIPAA/HITECH) and OCR/HHS Audit Overview
o Differences between HIPAA and HITECH Regulations
o Confidentiality, Integrity and Availability (CIA) &ePHI Data Elements
o HIPAA/HITECH Security, Privacy and Breach Requirements
o OCR Audit Protocol
o Patient Data Privacy, Security and Breach Procedures
o Step-by-step guide preparation techniques
o Sample policies
o Risk Assessment questionnaire for protecting electronic health information
o Checklist
The US Health and Human Services (HHS) conducts periodic audits of providers and Business Associates to ensure their compliance with the HIPAA Security and Privacy Rule, and to make sure they