2017 Webinar on Ransomware and HIPAA - Prevent, Prepare, Respond and Recover
Duration: 60 Minutes
Wednesday, June 14, 2017 | 10:00 AM PDT | 01:00 PM EDT
Overview: This course explains treacherous Ransomware threats attacking the Healthcare Industry and how to prevent, prepare for, respond to and recover from a Ransomware attack. It covers HIPAA Rules that apply to Ransomware, compliance with the HIPAA Rules and how to conduct a HIPAA Breach Risk Assessment to prove a Ransomware attack did not result in a Breach of Unsecured Protected Health Information (PHI) - a violation of the HIPAA Privacy Rule.
Why should you Attend:
- Ransomware including new, more treacherous varieties used by cyber-criminals to attack the Healthcare Industry
- HIPAA Rules that apply to Ransomware attacks
- "Social Engineering" tricks criminals use to sneak Ransomware into Electronic Information Systems
- What to do if your organization suffers a Ransomware attack
Best practices to:
- Recover from Ransomware Attacks
- How to do a HIPAA Breach Risk Assessment to determine if a Ransomware attack resulted in a HIPAA Breach - or not - if the assessment demonstrates a low probability of compromise to PHI
- What the HIPAA Breach Notification Rule requires when a Ransomware attack does result in a Breach of Unsecured PHI
- The interconnected roles and responsibilities of Covered Entities and BAs under the HIPAA Breach Notification Rule concerning Ransomware attacks
Areas Covered in the Session:
- Introduction - Course Agenda and Objectives
- What is Ransomware?
- Why is the Healthcare Industry a Prime Target?
- HIPAA Law and HIPAA Rules that apply to Ransomware Attacks
- Covered Entity - Business Associate Relationship, Responsibilities, Interdependent Liabilities
- What to Do if (when) your organization suffers a Ransomware Attack
- Preliminary Description - HIPAA Breach Risk Assessment
- Best Practices to Prevent a Ransomware Attack
- How to Prepare for a Ransomware Attack
- How to Respond to a Ransomware Attack
- To pay or not to pay?
- Law EnforcementHow to Recover from a Ransomware Attack
- How to do a HIPAA Breach Risk Assessment - Demonstration
- What to do if the Ransomware Attack caused a HIPAA Breach
- Step-by-Step Breach Notification Requirements
- Notifications - Fewer than 500 Individuals affected
- Notifications - More than 500 Individuals affected
- Questions, Answers, Discussion
Who Will Benefit:
- C-Suite Executives
- HIPAA Compliance Official
- HIPAA Privacy Officer
- HIPAA Security Officer
- Information Technology Supervisor
- Practice Manager
- Office Manager
- Risk Manager
- Compliance Official
- Healthcare Providers - e.g. Dentist, Optometrist, Chiropractor, Physical Therapist, Podiatrist, Physician.
Paul R. Hales J.D, is an attorney at law in St. Louis, Missouri whose practice has included specialization in the HIPAA Privacy and Security Rules from the dates they became effective. He provides assistance and counseling on the new, more demanding compliance requirements of the HITECH modifications to HIPAA. Mr. Hales is licensed to practice before the Supreme Court of the United States, Federal Appellate and District Courts, the State Courts of Missouri and is a graduate of Columbia University Law School.
Phone No: 1-800-385-1607