The TECHNOLOGY e-NEWSLETTER is published monthly in support of the healthcare industry's efforts to communicate the latest technology-related initiatives and events to keep us all informed.
Subscribers total over 3,000.The TECHNOLOGY e-NEWSLETTER is published monthly in support of the healthcare industry's efforts to communicate the latest technology-related initiatives and events to keep us all informed.
Subscribers total over 3,000.
In this issue:
1. MonthlyHIPAA Compliance Tip: IDENTITY & ACCESS MANAGEMENT (I&AM)
2. Health Care Compliance Association (HCCA) 12th Annual Compliance Institute April 13-16, 2008; New Orleans
3. Learn Why Accessible Data is Critical to Regulatory Compliance
4. Case Study: UC Davis Children’s Hospital & Videoconferencing Provide Immediate Specialty Care
5. Cisco Article: Why Should I Care About Secure Wireless?
6. AHA Solutions to Speak at ILHIMA Annual Meeting
7. White Paper from CA: Enterprise Single Sign-On Best Practice Considerations
8. Sixth Collaborative Communications Summit: Transforming Healthcare through Health Information Technology
9. AHA Annual Meeting; April 6-9, Washington, DC: Vision to Action
1. Monthly HIPAA Compliance Tip: IDENTITY & ACCESS MANAGEMENT (I&AM)
Brought to you by: Ali Pabrai, CISSP, CSCS, HIPAA Academy
The HIPAA Security Rule includes specific requirements for Person & Entity Authentication as well as specifications for Unique Identifiers. Also, the increasingly digital healthcare organization requires controls that; allow only authorized users to gain access to information, strictly control what users can do, monitor and track user activities and make users accountable for their actions. These controls are at the core of identity and access management (I&AM). I&AM is the broad area that healthcare organizations are looking at closely to address compliance requirements as well as challenges experienced by caregivers in quickly accessing necessary patient information.
I&AM addresses three important areas of security to protect access to the digital infrastructure:
1. Authentication
2. Access controls
3. Audit controls
Without I&AM controls the organization is vulnerable to compromising its sensitive information and vital assets to unauthorized users as well as being unable to fully respond to security complaints and audit requests.
I&AM is about managing the lifecycle of digital identities. It is about two specific security practices:
- The people, processes, and technologies dedicated to creating, managing, and revoking digital credentials
- The development and enforcement of policies governing authentication and access to information systems both inside and outside the enterprise
For more information, visit the ecfirst compliance portal at www.ecfirst.com/complianceportal to access white papers and executive briefs.
About HIPAA Academy: AHA Solutions, Inc., the endorsement facility of the American Hospital Association (AHA) awarded the AHA endorsement to ecfirst.com, Inc.'s (ecfirst) HIPAA Academy as a resource for training to help hospitals comply with the Health Insurance Portability and Accountability Act (HIPAA) security regulations.
HIPAA Academy HIPAA Compliance Training Solutions have the exclusive endorsement of the AHA.
2. Health Care Compliance Association (HCCA) 12th Annual Compliance Institute April 13-16, 2008; New Orleans
Join your colleagues in New Orleans for HCCA's 12th Annual Compliance Institute—the single most comprehensive compliance conference designed specifically to meet the needs of today's health care compliance professional. The 2008 Institute will be held at the Hilton New Orleans Riverside Hotel, New Orleans, LA
To register or for the most updated information, visit www.compliance-institute.org
Be sure to visit the AHA Solutions booth (#615) to learn how we can be your resource for education, information and products.
If you are interested in attending a Networking Dinner on Monday, April 14th while in New Orleans, please email lavdich@aha.org, call 312.895.2511 or click here to register. Enjoy the fare of the big easy, network with colleagues, and hear a brief overview from Jim Hart, Senior VP of the Burwood Group, on how public healthcare was recovered after Hurricane Katrina and the concept of Strategic Alignment with IT.
3. Learn Why Accessible Data is Critical to Regulatory Compliance
“The IT industry has become even more complex in the past few years with the advent of regulatory
compliance requirements that all publicly traded companies in the US and other regions must adopt.
Perhaps your organization is already working through these requirements. If you are a consultant or
non-publicly traded company, you may not be bound by these regulations - however your clients may
be, so this information is critical for anyone in the IT industry.
Regulatory standards affect the broad areas of data privacy, security, retention, protection and
accountability. Within these areas, checks and balances act to preserve the information and data.
Investigative processes verify the integrity of privacy, security and data protection and audits are
required for accountability.”
Read the full article
4. Case Study: UC Davis Children’s Hospital & Videoconferencing Provide Immediate Specialty Care
“Dr. James Marcin joined the staff of the University of California, Davis, Children’s Hospital in 1998.
At that time, says Dr. Marcin, “there was a need in California to ensure that all sick children had access to
pediatric specialists. One example city is Redding, CA, which serves many rural areas, but is not big enough to have its own pediatric intensive care unit.”
In fact, because there is no nearby intensive care unit (ICU) for young patients, Mercy Medical Center in
Redding admits approximately 120 sick children to its adult ICU each year. Having access to a pediatric critical care specialist offers youngsters an additional measure of care and specialized expertise, which can be very beneficial. With this in mind, Sacramento-based UC Davis Children’s Hospital began its Pediatric
ICU Telemedicine Program — the first such Pediatric ICU telemedicine program in the country.”
To find out what happened, get a copy of the complete case study, email technologysolutions@aha.org
TANDBERG video conferencing solutions have the exclusive endorsement of the AHA.
5. Cisco Article: Why Should I Care About Secure Wireless?
“For today’s mobile caregivers, the workspace can be anywhere: the point of care, hospital corridor, or home. And yet, nurses and doctors typically can only access information from the nurse’s station or desk, using a stationary computer with network access. Constantly walking back and forth to the network connection erodes productivity and can delay care.”
To get a copy and read the full article on why you should care about wireless ion your organization, email technologysolutions@aha.org
Cisco wireless networking products have the exclusive endorsement of the AHA.
6. AHA Solutions to Speak at ILHIMA Annual Meeting
The 2008 ILHIMA 55th Annual Meeting will be held at the Marriott Lincolnshire Resort in Lincolnshire, IL, Thursday through Saturday – April 10-12, 2008.
Brad Hunter, Director Technology Solutions of AHA Solutions, Inc. will present on Thursday, April 10, 3:30-5:00
Topic: HIT: Pressures, Issues, Optimization
The reality is that HIT is the most complex IT segment with many factors impacting IT optimization than any other IT field. Think about it: Your day is different than other IT professionals…the Federal Government has more “thoughts” on your operation than any other sector and the public has a major stake and opinion on how to run your business. To better optimize your hospital, a greater holistic understanding of non IT issues is needed.
For more information on the meeting, visit: http://www.ilhima.org/information/information1.html
7. White Paper from CA: Enterprise Single Sign-On Best Practice Considerations
“In many organizations, workers perform repetitious tasks throughout their day requiring interaction with multiple applications. This could involve looking up customer data in one application, inputting billing information into another or scheduling an appointment in yet another. While this segregation of systems has been considered inefficient, it was far from an insurmountable obstacle for business operations.
Enter security into the picture. Compliance regulations such as Sarbanes Oxley, HIPAA, and a host of others require organizations to secure sensitive data within applications. As a result, applications became front-ended by various secure login processes. For a single application, each login might take only 10-15 seconds, but multiply that time by the number of applications the user needs to access and the number of times this task is repeated throughout the day and that which was once routine, had become burdensome.”
For a complete copy of this white paper, email technologysolutions@aha.org
CA identity & access management and storage management solutions have the exclusive endorsement of the AHA.
8. Sixth Collaborative Communications Summit: Transforming Healthcare through Health Information Technology
Date: May 5-7, 2008
Location: Mandarin Oriental, Washington DC
The Collaborative Communications Summit: "Transforming Healthcare through Health Information Technology" is designed to help top-level executives, legislators, physicians, regulators and technologists come to grips with the swirling forces of technology change, policy development and changing business models. Attendees of the CCS HIT are industry leaders and senior executives from the healthcare community focused on HIT with the following job titles: CEO, CIO, CMO, CMIO, CNO, COO, CSIO, SVP, VP and Director.
The goal of the CCS HIT is to provide an intimate, high-level forum that facilitates open avenues of communication amongst executives and stakeholders in healthcare fostering the growth and adoption of HIT resulting in safer, more efficient and cost effective healthcare. Attendees will walk away with timely and actionable information that can be immediately implemented in their respective organizations.
To inquire about participation, please contact:
Chad Reott
330.294.0094
Chad@michaelbass.com
To register and for more information, visit: http://www.collaborativecommunicationssummit.com.
9. AHA Annual Meeting; April 6-9, Washington, DC: Vision to Action
The 2008 Annual Membership Meeting theme, Vision to Action: Local Leadership, National Change, is a reflection of the important role you play in your community, and the AHA’s commitment to ensuring that your wisdom, talent and energy continues to be a positive, driving force behind improving American health care.
This year’s meeting, April 6–9, will provide an excellent forum for sharing your ideas directly with the men and women who shape national health care policy. But just as important, it will be a terrific opportunity to reconnect with distant friends and former colleagues, make new friends, and learn from some of the best and brightest minds in health care—our members.
To register online and for additional meeting information, visit www.aha.org.
