Compliance, Security and Electronic Health Records (EHR)

A Healthcare Executive Briefing

The volume of electronic information in the healthcare industry is fast increasing. Organizations are challenged with the need to protect all confidential patient health information - as it flows through the infrastructure, as well as meet compliance requirements. Healthcare organizations are also deploying applications, portals and other systems to be able to support Electronic Health Records (EHR).  Further, the online communications of physicians, patients, nurses, business associates and employees is rising, as are threats to the flow and storage of all sensitive information.  So how do you meet the challenges of a increasing digital healthcare organization and ensure the integrity and availability of information depended on by clinicians for timely and appropriate patient care?

Proactive organizations will address compliance requirements and establish a secure foundation for healthcare transactions and information exchange by addressing gaps in enterprise security. In this executive brief, you will learn about:

• The National Healthcare Information Network (NHIN), Regional Health Information Organizations (RHIOs) and the impact of electronic health records (EHR) on information security and compliance.
• Regulatory compliance requirements related to information security with emphasis on legislations such as HIPAA Security, FISMA and Sarbanes-Oxley.
• NIST guidelines and their direct influence to enable your organization establish a common core of best practices in information security in areas such as identity management (single sign-on, context management), vulnerability assessment (risk analysis, penetration testing) and audit (monitoring).
• Options for ensuring high availability of critical business information to address compliance contingency requirements and enable clinicians with continual access to vital data.

Speaker:
Uday Ali Pabrai, CISSP, CSCS, CEO
ecfirst.com

Uday Ali Pabrai, CISSP, CSCS™, is the chief executive of ecfirst.com, an Inc. 500 business. He is a highly sought after InfoSec and regulatory compliance expert. Author of The Art of Information Security, he has developed a unique security methodology called, BizShield™: The Seven Steps to Enterprise Security™. BizShield™ today provides the framework for many security initiatives at several client organizations. He has delivered highly tailored security solutions to hundreds of clients across several industries.

With over two decades of hands-on consulting experience in information security and compliance, Mr. Pabrai was the creator of the world's most successful internet skills certification, CIW.

Mr. Pabrai also established the industry's first certification program on HIPAA - Certified HIPAA Professional (CHP) and Certified HIPAA Security Specialist™ (CHSS™). He recently launched the Certified Security Compliance Specialist™ (CSCS™) program.

Mr. Pabrai's clients have included Microsoft, U.S. Naval Surface Warfare Center, U.S. Defense Intelligence Agency, as well as numerous hospitals, state and county governments.