Information Security Strategy
The SECURITY & PRIVACY NEWSLETTER is published monthly in support of the healthcare industry’s efforts to work together towards compliance in security and privacy. Subscribers total over 3,000.
In this issue:
1. Monthly HIPAA Compliance Tip: Information Security Strategy
2. AHA Solutions Learning Series: Communication Interoperability for Healthcare: Improving Response & Recovery Web cast
3. Day in the Life of a Patient Seminar – Hosted by AHA Solutions and Burwood Group; 2/1/08
4. AHA Solutions to Present at HIMSS Arkansas/Tennessee Chapter Meeting
5. Health Care Compliance Association (HCCA) 12th Annual Compliance Institute April 13-16, 2008; New Orleans
6. Healthcare Malpractice Claims and Risk Management Roundtable
Did you notice? Our newsletter has a new name - AHA Solutions’ Technology e-Newsletter . As always, if you have any suggestions for newsletter topics, please forward your thoughts to: technologysolutions@aha.org .
1. Monthly HIPAA Compliance Tip: Information Security Strategy
Brought to you by: Ali Pabrai, CISSP, CSCS, HIPAA Academy
The December 11th, 2007 issue of The Wall Street Journal had a full page article on information security. The core topic addressed was “Beyond the Firewall: As a new breed of professional hackers emerges, companies are finding new tools to protect their networks.” The article states that in 2007 more than 270 organizations have lost sensitive information such as consumer credit card or employee social security numbers, as well as bank account numbers. This directly impacts the healthcare industry that is so rich in processing identifiable information on its systems and networks.
The healthcare industry has been focused on meeting HIPAA compliance, but do not lose sight of other regulations that also impact your organization. This includes State regulations on privacy and security – now 39 States have regulation, as well as the Payment Card Industry’s (PCI) Data Security Standard (DSS).
Your organization’s information security strategy document must clearly identify the regulations that impact your organization and establish security priorities for the next fiscal period. These priorities will not be achieved unless the information security strategy document is approved and fully supported by the executive management team.
HIPAA audits have started and PCI is serious about fines. As the New Year starts, it is best we adopt a proactive approach to information security – and that starts with your strategy document. Keep it short, no more than 2-3 pages, and seek the input of a cross section of the organization, so you have the support you need to be successful.
For an updated quick reference card on PCI DSS, please email technologysolutions@aha.org
About HIPAA Academy: AHA Solutions, Inc., the endorsement facility of the American Hospital Association (AHA) awarded the AHA endorsement to ecfirst.com, Inc.’s (ecfirst) HIPAA Academy as a resource for training to help hospitals comply with the Health Insurance Portability and Accountability Act (HIPAA) security regulations.
2. AHA Solutions Learning Series: Communication Interoperability for Healthcare: Improving Response & Recovery Web cast
AT&T and AHA Solutions present free education. Get latest updates on federal guidelines regarding Interoperable communications, Homeland security funding, overcoming network congestion in an emergency and continuity of operations planning.
When: 1/30/08
Time: 12:00-1:30pm CST
AT&T voice and data networking products have the exclusive endorsement of the AHA.
3. Day in the Life of a Patient Seminar – Hosted by AHA Solutions and Burwood Group
The dynamics of today’s healthcare market require innovative solutions at the point of care that drive efficiency, improve patient safety and enhance quality of care. This seminar follows a patient through a day in life within a healthcare setting to examine point of care information technology solutions that fundamentally improve their experience.
When: Friday, February 1st, 2008 7:30 am - 1:30 pm
American Hospital Association (AHA) Corporate Offices, One North Franklin, Chicago, Illinois 60606
For more information and to register click here.
Burwood Group’s strategic wireless consulting has the exclusive endorsement of the AHA.
4. AHA Solutions to Present at HIMSS Arkansas/Tennessee Chapter Meeting
Brad Hunter, Director, Technology Solutions, AHA Solutions, Inc. will be presenting the American Hospital Association 2008 Environmental Assessment
Date: February 7, 2008
Location: Arkansas/Tennessee HIMSS Chapter Meeting, Memphis, TN
- Gain a better understanding of current trends affecting Healthcare
- Understand the National Framework for Change Healthcare Reform “Health For Life”
- Obtain an overview of current HIT legislative issues
To register for this event:
Arkansas/Tennessee Meeting Click Here
5. Health Care Compliance Association (HCCA) 12th Annual Compliance Institute April 13-16, 2008; New Orleans
Join your colleagues in New Orleans for HCCA’s 12th Annual Compliance Institute—the single most comprehensive compliance conference designed specifically to meet the needs of today’s health care compliance professional. The 2008 Institute will be held at the Hilton New Orleans Riverside Hotel, New Orleans, LA
To register or for the most updated information, visit www.compliance-institute.org
6. Healthcare Malpractice Claims and Risk Management Roundtable
Please join us for discussing, sharing and thinking!
When: Thursday, January 10th, 2008:
Listen and Learn from an Expert Panel:
-Clare Bello, President and CEO, VCM Claims and Consulting
-Bill McDonough, Managing Principal, Integro Insurance Brokers
-Tim Slowick, Director of Claims, UMass Memorial
-Jeff Tindall, Esq., Weber Gallagher
For more information and to register click here.
VCM ’s professional liability claims and litigation management solution has the exclusive endorsement of the AHA.
