Online Safety Community

Carrying out a HIPAA and HITECH risk analysis


The importance of conducting a risk analysis updating it can be gauged from the fact that failure to conduct a written risk analysis qualifies as “willful neglect”, which carries the highest Civil Money Penalty (“CMP”). This cannot be waived by the DHHS unlike violations that happen due to a reasonable cause.

Since risk analysis is a required implementation specification under the Security Rule, failure to do one amounts to willful neglect. If the civil money penalties for not doing a risk analysis were high enough; consider the costs associated with remediation: Blue Cross Blue Shield of Tennessee not only had to pay the $1.5 million settlement, but also incurred $17 million in remediation costs-costs that might have been avoided had it done an updated risk analysis. Other seven-figure settlements involved failure to do the required initial risk analysis.

Risk analysis is at the core of HIPAA and HITECH

So, it needs to be understood that risk analysis is at the core of HIPAA & HITECH. MentorHealth, a leading provider of professional trainings for the healthcare industry, will be explaining the importance of risk analysis to HIPAA and HITECH at a webinar it is organizing. Jonathan P. Tomes, J.D., a health care attorney and partner in the law firm of Tomes & Dvorak, Chartered, will be the speaker at this webinar.

To gain understanding of how to carry out a risk analysis for HIPAA and HITECH, please register for this webinar by visiting http://www.mentorhealth.com/control/w_product/~product_id=800889LIV....

This webinar will teach participants the proper ways of performing a HIPAA & HITECH Act Risk Analysis. Jonathan will help participants understand the nature, scope and methodology behind risk analysis.

He will cover the following areas during this session:

  • What is risk analysis?
  • Why do you need to do one?
  • How to do one
  • Assemble a good team
  • Identify assets
  • Identify risks
  • Quantify risks
  • Select reasonable, appropriate, and cost effective security measures
  • Test and revise security measures
  • Particular areas to focus on (portable devices, social media, email, and the like)
  • Case study (will walk webinar attendees through the process)
  • Questions and answers

Views: 24

Comment

You need to be a member of Online Safety Community to add comments!

Join Online Safety Community

Take our poll!

Take our poll!

Latest Activity

Madison Quinn posted an event

Pega Robotic Automation BPM Online Training at Online

October 20, 2017 all day
Pega Robotic Automation is equipped with an operating system that allows organizations to control all their robotics processes from a location. In combination with the Pega 7 BPM platform and case management applications, companies can seamlessly integrate human actions with robot automation for optimal workflow.Pegasystems introduces Pega Robotic Automation. It is now fully merged and available on the Pega 7 platform for case and business process management (bpm) and the portfolio of customer…See More
12 hours ago
Adam Fleaming posted a blog post

Learn How to Prevent Quality and Compliance Problems by having a strong system for Purchasing Controls!

In this era of globalization; outsourcing has become a major component of business. Outsourcing brings many benefits for companies. Short and long-term cost benefits, the ability to concentrate on their core activities and grow their business, and the freedom of avoiding the actual tasks that go into manufacturing are some of the stated…See More
yesterday
John Robinson posted blog posts
yesterday
Training Doyens posted events
yesterday

Forum

Risk Management Solutions

Risk is defined as the potential hazard, harm or side effect of an activity. Almost all activities come with some or another form of risk, which needs to be mitigated or eliminated. Risk management…Continue

Tags: risk, Banking, management, healthcare, Process

Started by John Robinson on Tuesday.

Occupational Health and Safety 4 Replies

Health and safety are important aspects of an organisation’s smooth and effective functioning.  Did you know that workplace health & safety injuries cost Australian businesses over $60 billion…Continue

Tags: Safety, and, Health, Occupational

Started by WHS Solutions. Last reply by John Robinson on Monday.

Introduction to PEGA-PRPC

Pega/PRPC is a popular rules engine and BPM tool from Pega systems that is gaining good market share among large corporations. Architects and developers build the Pega/PRPC instance while…Continue

Tags: training, course, online, pega

Started by Soujanya Naganuri Oct 6.

Introduction to PEGA-PRPC

Pega/PRPC is a popular rules engine and BPM tool from Pega systems that is gaining good market share among large corporations. Architects and developers build the Pega/PRPC instance while…Continue

Tags: training, course, online, pega

Started by Soujanya Naganuri Oct 6.

Introduction to PEGA-PRPC

Pega/PRPC is a popular rules engine and BPM tool from Pega systems that is gaining good market share among large corporations. Architects and developers build the Pega/PRPC instance while…Continue

Tags: training, course, online, pega

Started by Soujanya Naganuri Oct 6.

Badge

Loading…

© 2017   Created by Safety Community.   Powered by

Badges  |  Report an Issue  |  Terms of Service