Subscribe to Events Feeds

303 Results Found

Risk Analysis to Meet HIPAA HITECH and Meaningful Use Webinar By MentorHealth
5/7/2014 10:00 AM - 11:00 AM
online event Fremont, California United States
Event Listing

Overview: This presentation will guide the user on the principles of Risk Analysis and Risk Management to prioritize risks. It will rely heavily on the NIST 800-30 as revised and finalized on 09/18/2012.

The process of risk analysis starts with the simple principle that you must know you have an asset in order to protect it. This presentation will provide information about how to determine where the risks to the organization exist and point organizations to where to look for this information. Once information asset locations have been identified, then the risk and safeguards to that information can be explored.

Risk assessments are a key part of effective risk management and facilitate decision making at all three tiers in the risk management hierarchy including the organization level, network level, and information system level.

Risk Management is a process that provides for the identification, prioritization and management of technical and non-technical risk to the confidentiality, integrity or availability of information. Risks cannot be eliminated; they must be managed appropriately. A key step in security management is risk analysis; that is, identifying threats and vulnerabilities against security controls and measures. A risk analysis allows an organization to estimate potential loss. It also can help determine the most appropriate and cost-effective security measures to implement. After the risk analysis is performed, organizations should implement the safeguards and controls needed to keep risks at an acceptable level as determined by executive management or owner.

Why should you attend: The HIPAA security rule requires every covered entity (CE) to conduct a risk analysis to determine security risks and implement measures "to sufficiently reduce those risks and vulnerabilities to a reasonable and appropriate level." In addition to attest for Meaningful Use and organization must complete a HIPAA Risk Analysis and implement a Risk Management Program. This would include conducting a risk analysis at the organizational, network and application levels.

HITECH EMR Meaningful Use Post-Pay Audits have included a request that organizations provide proof that a risk analysis was performed prior to the end of the reporting period. In addition, they will ask for a risk mitigation plan to address deficiencies and they may request completion dates. It is not the Vendors Responsibility to conduct an application risk analysis; it is the covered entities responsibility. The Meaningful Use guidance has also shown that your risk analysis cannot be limited to just the application.

This session will explore the processes and methods that can assist organizations prioritize IT security projects by addressing the highest risks to the organization. Covered entities must make security decisions on what is appropriate for their specific environment and risk analysis is the tool to ensure that risk mitigation activities are reasonable for a specific environment.

This presentation reviews the regulatory requirements for security risk analysis and management, provides an overview of the types of risk analysis that can be performed, and offers a practical approach on how to comply with these requirements.

Areas Covered in the Session:

Locate the data, and then conduct a risk analysis

Define Reasonable By Using NIST and CMS Guidance as a Guide

Risk Analysis Steps

Identify the scope of the specific analysis

Gather Data

Identify and document potential threats and vulnerabilities

Assess and document current security measures

Determine the likelihood of threat occurrence

Determine the potential impact of threat occurrence

Determine the level of risk

Identify potential security measures and finalize documentation

Risk Management Steps

Develop and implement a risk management plan

Implement security measures

Evaluate (monitor) and maintain security measures

Risk Mitigation or Acceptance Options

Define Reasonable by Using the HIPAA Regulation as a Guide

The size, complexity, and capabilities of the covered entity

The covered entity's technical infrastructure, hardware, and software security capabilities

The costs of security measures

The probability and criticality of potential risks to EPHI

Conducting a Risk Analysis Of my Certified EMR

What questions should I ask?

What Documentation should I retain?

Creating a mitigation plan

Who Will Benefit:

Information Security Officers

Compliance Officers

Chief Information Officers

Meaningful Use Coordinators

William Miaoulis CISA, CISM, is a senior healthcare information system (IS) professional with more than 20 years of healthcare Information Security experience. Bill is the founder and primary consultant for HSP Associates. Prior to starting HSP Associates in January of 2013, Bill was the Chief Information Security Officer (CISO) and led the HIPAA security and privacy consulting efforts for Phoenix Health Systems for over 11 years and also was the HIPAA Consulting Manager for SAIC for 18 months. For seven years, Miaoulis was the University of Alabama Birmingham (UAB) Medical Center’s Information Security Officer, where he instituted the first security and privacy programs at UAB starting in October 1992.


Phone No: 800-385-1607

FaX: 302-288-6884

Event Link:

Research Commercialization From Ideas to IPO
5/19/2014 9:00 AM - 5/20/2014 5:00 PM
Millennium Gloucester Hotel London Kensington London United Kingdom
Event Listing

This conference will provide an international forum for knowledge transfer that will enable different sectors to develop new government- university-industry -investor collaborations. Thought leaders representing a wide range of government, academic, and industrial experts all of whom understand the necessity for an international partnering platform, will address what has worked, what has failed, and concrete steps to improve global economic innovation and job creation. Together they will explore ways to translate entrepreneurial innovations into economic growth.

Regulatory Affairs in the USA FDA for Drugs and Biologics 2day InPerson Seminar
4/24/2014 8:30 AM - 4/25/2014 4:30 PM
Courtyard Chicago Downtown/River North Chicago, Illinois United States
Event Listing

This regulatory compliance training will give the participants a detailed presentation on regulatory affairs of human pharmaceuticals (drugs and biologics) in the United States to work with the Food and Drug Administration (FDA).

RAPS Approved Seminar on The A to Zs of Writing and Enforcing Effective SOPs Standard Operating
4/24/2014 9:00 AM - 4/25/2014 6:00 PM
WILL BE ANNOUNCED SOON Atlantic City, New Jersey United States
Event Listing

This session will discuss key considerations for Good Documentation Practices that would impact product quality, safety, and efficacy and/or data integrity. Key components of documentation and record management system will be introduced.

RAPS Approved Seminar on Regulatory Compliance for Dietary Supplements in the US EU and Canada
4/24/2014 9:00 AM - 4/25/2014 6:00 PM
Trump Taj Mahal Atlantic City NJ, New Jersey United States
Event Listing

The course will cover basic regulatory requirements for marketing of dietary supplements in the U.S. and Canada including product safety, manufacturing, product claims, and labelling requirements. A general overview of EU regulations will also be given.

Product Management in an Agile World
4/23/2014 5:30 PM - 7:30 PM
Coleman University San Diego, California United States
Event Listing

Come join for a session that will cover the basics of the Agile methodology, a focus on the product manager’s role, and how you and your organization can leverage it to deliver working products on time and on budget while responding to changing customer requirements.

ProSeed Business Model Design
5/13/2014 8:30 AM - 4:30 PM
D.J. Bordini Center Appleton, Wisconsin United States
Event Listing

Pro-Seed: Business Model Design

Portland Startup Weekend
4/25/2014 6:00 PM - 4/27/2014 9:00 PM
Puppet Labs Portland,, Oregon United States
Event Listing

Startup Weekends are 54-hour events designed to provide superior experiential education for technical and non-technical entrepreneurs. Beginning with Friday night pitches and continuing through brainstorming, business plan development, and basic prototype creation, Startup Weekends culminate in Sunday night demos and presentations.

Portland Startup Weekend
4/25/2014 6:00 PM - 4/27/2014 9:00 PM
Puppet Labs Portland, Oregon United States
Event Listing

tartup Weekend is a global grassroots movement of active and empowered entrepreneurs who are learning the basics of founding startups and launching successful ventures. It is the largest community of passionate entrepreneurs with over 400 past events in 100 countries around the world in 2011.

Price: $85 Early-bird / $100

Port 80
6/4/2014 6:00 PM - 9:00 PM
Spacecubed Perth Australia
Event Listing

The official meetup of the Australian Web Industry Association. Not a startup event, it's all about the web industry and things associated with it, but a good place to meet and talk to people if your startup is web-based.

Events Map