Is Your Organization Compliant with HITECH’s Data Breach Notification Mandate?

To Schedule a Private Webcast Customized to Address Your Requirements, Please Contact John Schelewitz at 1.480.663.3225 or John.Schelewitz@ecfirst.com

Event Summary

The HITECH Act requires healthcare providers, payers and clearinghouses (Covered Entities) and Business Associates, to start reporting breaches, not only to patients, but also to the U.S. Department of Health and Human Services (HHS) and the media, based on the number of individuals impacted by the breach.  This is a sweeping change in the industry. 

The HITECH Act introduces specific requirements for business associates to report breaches by a covered entity. Business associates that violate the HIPAA Security Standards or the required terms of their business associate contracts now will be subject to the same civil and criminal penalties as covered entities.

__________________________________________________________________

Is your organization prepared to address the data breach notification requirements of the HITECH Act?

Learn more about the specific requirements of the data breach notification provision and the critical steps an organization needs to take to comply with this mandate.

What You Will Learn?

1. Examine key requirements for the HITECH Act’s data breach notification section of the regulation
2. Identify who needs to be informed and what are the key processes and capabilities you need to enable your organization to address data breach requirements
3. Understand the concept of “unsecured PHI” and its impact on your policies and processes for data breach management
4. Understand how to prepare for an audit by organizations such as the OCR, CMS, OIG or the FTC
5. Identify critical steps for organizations to develop to address the data breach notification provisions of the HITECH Act

Intended Audience

• Chief Information Security Officer
• Chief Information Officer
• Chief Technology Officer
• Director of Information Technology
• Compliance Officer
• Security analyst

ecfirst Testimonials

“This was a great session given by a very knowledgeable individual. It has opened my eyes to how vulnerable an organization may be.”

Tammy Deras, Applications Manager

Prime Healthcare Services

“One of the best one-hour presentations I have ever witnessed. ecfirst people are true professionals, extremely knowledgeable and passionate about compliance and training.”
Michael Boanta, CEO
Boanta & Associates – Consultant for PrivateAccess.info

“Delivery and expertise on the topic matter was much more than expected…”
Jay Falck, CISSP, CSCS

Speaker

Ali Pabrai, CISSP (ISSAP, ISSMP), CSCS

Cyber Security & Compliance Expert

ecfirst, Chief Executive

Ali Pabrai, chief executive of ecfirst, an Inc. 500 business (2004), is a highly sought after cyber security and compliance expert.  Mr. Pabrai has successfully delivered tailored security solutions to hundreds of organizations worldwide.  He is also the author of the forthcoming book, Precision Security and recently launched the Certified Security Compliance SpecialistTM (CSCSTM) program that addresses key compliance and security regulations, including PCI DSS, ISO 27001/27002, HIPAA, FISMA and others. Mr. Pabrai established the healthcare industry’s gold standard program on HIPAA certification with the HIPAA AcademyTM.

Mr. Pabrai is a featured speaker and has presented opening keynote and other sessions at several conferences worldwide, including Middle East Healthcare Congress, Microsoft HUG (HIMSS), HIMSS Midwest, Internet World, Comdex, NetSecure, and Information Systems Security Associations (ISSA) Conferences.  He is also a member of the U.S. FBI InfraGard.

ecfirst Brings Deep Experience & Expertise with HITECH and HIPAA

ecfirst, home of the HIPAA Academy, is the gold standard for HIPAA and the HITECH Act with its comprehensive array of services that include policy templates, quick reference cards, training, certification and consulting. The ecfirst deep consulting expertise is embodied in its signature methodology, BizShieldTM - that enables organizations to comply with HIPAA and HITECH Act mandates. The ecfirst BizShieldTM methodology specifically includes the following core components:

• A 2-day in-depth certification program, Certified HIPAA Professional (CHP) that addresses HIPAA Privacy, HIPAA Security, the HITECH Act and a lot more
• A 2-day in-depth certification program, Certified Security Compliance SpecialistTM (CSCSTM) that addresses ISO 27000, PCI DSS, HIPAA, HITECH, FISMA and a lot more
• HIPAA/HITECH Security Policy Templates that can easily be tailored to enable your organization establish a comprehensive library of policies that meet compliance mandates
• The industry’s first ISO 27002/HIPAA Security Rule Mapping Framework document
• Managed Compliance Services Program (MCSP) for HIPAA/HITECH that enables your organization to leverage deep ecfirst HIPAA/HITECH expertise and yet pay a fixed monthly fee for a 36-month period and access a range of compliance services

Clients

ecfirst clients include hundreds of hospitals, government agencies, Microsoft, McKesson, HP, Symantec and many organizations.

Contact ecfirst – The Gold Standard for HITECH and HIPAA

To bring this presentation to your site, or to tailor a webcast for your organization, please contact John Schelewitz at 1.480.663.3225 or at John.Schelewitz@ecfirst.com. To learn more about ecfirst services, please visit www.ecfirst.com.