SATISFIED WITH YOUR RETURN ON IT DOLLARS SPENT?

Transcription

1 SATISFIED WITH YOUR RETURN ON IT DOLLARS SPENT? Charlie Grantham IT and Process Optimization Consultant

2 HOUSEKEEPING ITEMS All phones have been muted. Please enter your questions into the Questions section of the GoToWebinar Ribbon at any time. Q&A Time will follow the presentation. Connection problems will be addressed via the Questions section. Polls will be conducted during the webinar. Just click your multiple choice answer. 2

3 ABOUT THE PRESENTER Over 20 years Healthcare IT experience 12 years as IT Director of Healthcare System 124 Bed Inpatient Facility 94 Bed Skilled Nursing Facility 26 Physician Practices HIPAA Privacy and Information Security Officer System / Network Design System Integration / Interfaces Meaningful Use Attestations Stage 1 - Stage 2 (EMR and AMR) Led many HCIS migrations Well Versed in Clinical Informatics Charlie Grantham IT and Process Optimization Consultant 3

4 SATISFIED WITH YOUR RETURN ON IT DOLLARS SPENT? Internal Concerns Regulatory Concerns External Concerns 4

5 SATISFIED WITH YOUR RETURN ON IT DOLLARS SPENT? 5

6 IT ASSESSMENT STRATEGIES 6

7 IT ASSESSMENT STRATEGIES You have to know where you are, to know how to get to where you want to go. Determine areas of assessment. Set a scope. Document your findings. The difference between science and playing around, is writing it down. Caregivers must document or it didn t happen IT must do the same. 7

8 8

9 IT ASSESSMENT STRATEGIES Develop a roadmap that is forward looking Set Reachable Goals. Always keep the destination in mind. Watch out for potholes. Take a rest stop every now and then. 9

10 IT ASSESSMENT STRATEGIES Business continuity / Disaster recovery Be Prepared Prioritize systems Develop and Test Your Plan 10

11 QUICK INSTA-POLL Proper business continuity planning requires assignment of risk and priority. When was the last time this was done? A. Within the past 5 years. B. Within the last year. C. Organization has never completed this but we are interested to learn more. D. Organization has never completed this. E. I m not sure. 11

12 EHR ASSESSMENT 12

13 EHR ASSESSMENT Assessing your current state Assess Workflows How Many Clicks Does it Take? Assess Capabilities Reporting Mobility Integrated Care Capable 13

14 EHR ASSESSMENT EHR optimization needs to be never ending Constant adherence to peer review, best practices and Process Improvement Use DATA to change from emotion to analytics. Not every solution requires money, build efficiencies in products already live. Be confident in the skills of your existing IT / Informatics department. 14

15 QUICK INSTA-POLL How often do you analyze your clinical workflows for efficiency? A. Every 6-12 Months. B. Every year or so. C. Every five years. D. Not since the EHR was put in. 15

16 MEANINGFUL USE MU / HITECH / MIPS 16

17 MEANINGFUL USE Be prepared for HHS Audits. Read the regulation requirements! (SRA) Over 150 auditable line items Administrative, Physical, Technical Document, document, document. Build a culture of Compliance in everything you deploy. 17

18 MEANINGFUL USE Examples of Administrative Safeguards Required A (a)(1)(i) Standard Does your practice develop, document, and implement policies and procedures for assessing and managing risk to its electronic protected health information (ephi)? A (a)(5)(ii)(A) Addressable As part of your practice s ongoing security awareness activities, does your practice prepare and communicate periodic security reminders to communicate about new or important issues? A (b)(3) Required Does your practice execute business associate agreements when it has a contractor creating, transmitting or storing ephi? 18

19 MEANINGFUL USE Examples of Physical Safeguards Required PH (a)(1) Standard Do you have an inventory of the physical systems, devices, and media in your office space that are used to store or contain ephi? PH (a)(2)(i) Addressable Have you developed policies and procedures that plan for your workforce (and your information technology service provider or contracted information technology support) to gain access to your facility and its ephi during a disaster? PH (d)(1) Standard Do you remove or destroy ephi from information technology devices and media prior to disposal of the device? 19

20 MEANINGFUL USE Examples of Technical Safeguards Required T (a)(1) Standard Does your practice have policies and procedures requiring safeguards to limit access to ephi to those persons and software programs appropriate for their role? T (a)(2)(ii) Required Does your practice have policies and procedures to enable access to ephi in the event of an emergency? T (b) Standard Does your practice have policies and procedures for creating, retaining, and distributing audit reports to appropriate workforce members for review? 20

21 QUICK INSTA-POLL How confident do you feel that your current IT and Privacy Policies are comprehensive? A. Very Confident B. Somewhat Confident C. Not Confident D. Not Sure, Policies? 21

22 CYBER SECURITY 22

23 CYBER SECURITY PHISHING Most prevalent attack vector currently Things to look for: Spelling errors and Grammar Check the address Formatting errors Smell Test 23

24 CYBER SECURITY PHISHING When in doubt Delete Think before you click that link Beware attachments 24

25 CYBER SECURITY PHISHING Not all are so obvious Spearphishing When in Doubt Delete 25

26 CYBER SECURITY SOCIAL MEDIA Cyber Criminals use information often shared by you against you. Be careful what you share. 26

27 27

28 QUICK INSTA-POLL Have you ever gotten a friend request from someone you know, only to later learn it was fraudulent? Yes No 28

29 CYBER SECURITY Spam Unwanted , instant messages, e-cards, and other online communication Hoaxes sent by online criminals that tries to trick you into giving them money Identity Theft A crime where con artists get your personal information and access your cash and/or credit 29

30 CYBER SECURITY Viruses/Worms Software programs designed to invade your computer, and copy, damage or delete your data Trojans Viruses that pretend to be programs that help you while destroying your data and damaging your computer Spyware Software that secretly watches and records your online activities or sends you endless pop-up ads 30

31 STAY EVER VIGILANT Coders are always coding. Hackers are always hacking. Systems engineers are always engineering 31

32 QUESTIONS AND ANSWERS 32

33 ONE FINAL THOUGHT IT Systems should be tools not obstacles for your workforce. 33

34 SATISFIED WITH YOUR RETURN ON IT DOLLARS SPENT? Charlie Grantham IT and Process Optimization Consultant