The Customer Relationship:

Similar documents
Escalated Threats to PHI Require a New Approach to Privacy and Security Wednesday, March 2, 2016

Speakers. Shellie Zavatsky Director of Internal Audit at Hurley Medical Center. Trent Long Director of Managed Privacy Services at FairWarning, Inc

View the Replay on YouTube

Security and Privacy Governance Program Guidelines

The Role of IT in HIPAA Security & Compliance

Bringing cyber to the Board of Directors & C-level and keeping it there. Dirk Lybaert, Proximus September 9 th 2016

FFIEC Cyber Security Assessment Tool. Overview and Key Considerations

Auditing and Access to Electronic Health Records. December 15, p (Eastern)

Protecting PHI in the Cloud. Session #47, February 20, 2017 Kurt J. Long, Founder & CEO, FairWarning, Inc.

Journey to HIMSS18: Privacy, Security and Cybersecurity

Ready, Willing & Able. Michael Cover, Manager, Blue Cross Blue Shield of Michigan

Professional Training Course - Cybercrime Investigation Body of Knowledge -

BUILDING CYBERSECURITY CAPABILITY, MATURITY, RESILIENCE

Incident Response Lessons From the Front Lines. Session 276, March 8, 2018 Nolan Garrett, CISO, Children s Hospital Los Angeles

Cybersecurity. Securely enabling transformation and change

WA Govt Changing Cyber Security Landscape

Cybersecurity and Hospitals: A Board Perspective

Risk Advisory Academy Training Brochure

New Provider Onboarding

Operationalizing Cybersecurity in Healthcare IT Security & Risk Management Study Quantitative and Qualitative Research Program Results

HIPAA Compliance is not a Cybersecurity Strategy

Critical HIPAA Privacy & Security Crossover Areas

Cyber Security in Smart Commercial Buildings 2017 to 2021

Auditing and Monitoring for HIPAA Compliance. HCCA COMPLIANCE INSTITUTE 2003 April, Presented by: Suzie Draper Sheryl Vacca, CHC

RSA Solution Brief. Managing Risk Within Advanced Security Operations. RSA Solution Brief

A HIPAA Compliance and Enforcement Update from the HHS Office for Civil Rights Session #24, 10:00 a.m. 11:00 a.m. March 6, 2018 Roger Severino, MSPP,

locuz.com SOC Services

Regulatory Update Cyber Security

Meaningful Use or Meltdown: Is Your Electronic Health Record System Secure?

Engaging Executives and Boards in Cybersecurity Session 303, Feb 20, 2017 Sanjeev Sah, CISO, Texas Children s Hospital Jimmy Joseph, Senior Manager,

Technology General Controls and HIPAA Security Compliance: Covering the Bandwidth in One Audit

Managing Cybersecurity Risk

FTA 2017 SEATTLE. Cybersecurity and the State Tax Threat Environment. Copyright FireEye, Inc. All rights reserved.

Incident Response. Is Your CSIRT Program Ready for the 21 st Century?

IBM Security Systems. IBM X-Force 2012 & CISO Survey. Cyber Security Threat Landscape IBM Corporation IBM Corporation

Six Weeks to Security Operations The AMP Story. Mike Byrne Cyber Security AMP

The Resilient Incident Response Platform

The Deloitte-NASCIO Cybersecurity Study Insights from

DATA SHEET RSA NETWITNESS PLATFORM PROFESSIONAL SERVICES ACCELERATE TIME-TO-VALUE & MAXIMIZE ROI

Achieving Cyber-Readiness through Information Sharing Analysis Organizations (ISAOs)

The Cyber War on Small Business

Neil Peters-Michaud, CHAMP Cascade Asset Management ITAM Awareness Month December 2016

Tasking Analytics and Optimization

FulcrumWay Leading Provider of Enterprise Risk Assessment Mitigation and Remediation Solutions

Cyber Risk Program Maturity Assessment UNDERSTAND AND MANAGE YOUR ORGANIZATION S CYBER RISK.

building a security culture to counter emerging cybersecurity threats

PLEASE NOTE. - Text the phrase MICHAELBERWA428 to the number /23/2016 1

White Paper. Enabling Mobile Users and Staying Compliant. How Healthcare Organizations Manage Both

MITIGATE CYBER ATTACK RISK

Ponemon Institute s 2018 Cost of a Data Breach Study

Update from HIMSS National Privacy & Security. Lisa Gallagher, VP Technology Solutions November 14, 2013

The Integrated Auditor: Becoming the Go-to Resource Your Company Needs APRIL 24, 2018

An Integrated Approach to Technology Risk Management and Compliance

InfoSec Risks from the Front Lines

Cyber Security and Cyber Fraud

Cybersecurity in Higher Ed

Mission: Continuity BUILDING RESILIENCE AGAINST UNPLANNED SERVICE INTERRUPTIONS

Birmingham Community Healthcare NHS Foundation Trust. 2017/17 Data Security and Protection Requirements March 2018

Intelligent Building and Cybersecurity 2016

Department of Management Services REQUEST FOR INFORMATION

August Objectives. Agenda. Promoting Your Professional Development with ACMPE. Describe the foundation and value of certification and fellowship

FOR FINANCIAL SERVICES ORGANIZATIONS

Monthly Cyber Threat Briefing

Adaptive & Unified Approach to Risk Management and Compliance via CCF

BPS Suite and the OCEG Capability Model. Mapping the OCEG Capability Model to the BPS Suite s product capability.

Physical security advisory services Securing your organisation s future

Don t Be the Next Headline! PHI and Cyber Security in Outsourced Services.

PREPARE FOR TAKE OFF. Accelerate your organisation s journey to the Cloud.

Cybersecurity What Companies are Doing & How to Evaluate. Miguel Romero - NAIC David Gunkel & Dan Ford Rook Security

Identity Theft: Enterprise-Wide Strategies for Prevention, Detection and Remediation

SATISFIED WITH YOUR RETURN ON IT DOLLARS SPENT?

Privacy By Design: Privacy smart from the start. Agenda. 1. About Deloitte. 2. Privacy Incidents Around the World. 3. Privacy Smart from the Start

Oracle Buys Automated Applications Controls Leader LogicalApps

Healthcare HIPAA and Cybersecurity Update

Cybersecurity Risk Mitigation: Protect Your Member Data. Introduction

Cybersecurity and the Board of Directors

Healthcare Security Success Story

Effective Cyber Incident Response in Insurance Companies

Cybersecurity The Evolving Landscape

DEFINITIONS AND REFERENCES

Certified Information Security Manager (CISM) Course Overview

INTELLIGENCE DRIVEN GRC FOR SECURITY

CYBERSECURITY IN THE POST ACUTE ARENA AGENDA

CYBERSECURITY MATURITY ASSESSMENT

4 Ways to Protect Your Organization from a Data Breach

The HIPAA Security & Privacy Rule How Municipalities Can Prepare for Compliance

Geonetric Webinar: February Selecting a Web Content Management System for Your Health System

Angela McKay Director, Government Security Policy and Strategy Microsoft

Preparing for a Breach October 14, 2016

GRC SURVEY RESULT Please indicate your profession

DHG presenter. August 17, Addressing the Evolving Cybersecurity Landscape. DHG Birmingham CPE Seminar 1

FY ICMA Benchmarking Results

Cyber Defense Maturity Scorecard DEFINING CYBERSECURITY MATURITY ACROSS KEY DOMAINS

How to choose the right Data Governance resources. by First San Francisco Partners

Healthcare IT Modernization and the Adoption of Hybrid Cloud

THE POWER OF TECH-SAVVY BOARDS:

The Gartner Security Information and Event Management Magic Quadrant 2010: Dealing with Targeted Attacks

Not Just Another Day of HIPAA

Cyber fraud and its impact on the NHS: How organisations can manage the risk

AUSTRALIA Building Digital Trust with Australian Healthcare Consumers

Transcription:

View the Replay on YouTube The Customer Relationship: Behind the Scenes with Managed Privacy Services September 10 th 2015 Executive Series Webinar

Today s Speakers Ann Marie Harvey Privacy Manager Baptist Health Vinson Cao Privacy Analyst FairWarning, Inc. Chuck Burbank Director of Managed Privacy Services FairWarning, Inc.

Agenda Healthcare Threat Landscape Baptist Health System - Jacksonville, FL Why Managed Privacy Services Managed Privacy Services Relationship Getting Started Behind the Scenes Activity Working Together Future Expectations

Escalating Advanced Threats It s a new world Foreign National Espionage Rise of Cyber Threats to Healthcare Industry Sale of Patient Data to Crime Rings Sale of Employee Data to Crime Rings IRS Tax Fraud Sale of Physician Data to Crime Rings Medical & Financial ID Theft Lost laptops, media, paper records Snooping 1 Patient Complaints Pre-2010 2011 2012 2013 2014 2015

Expertise Gap Pre-2009 vs. 2015 Escalating Advanced Threats Security, Forensics & Compliance Expertise OCR Audit Experience Clinical Data & Workflow Expertise Security Incident Management Partial FTE Global Investigations Investigations & Security Skills Advanced Analytics, Filtering, Proactive Alerts

Managed Privacy Services Auditing & Investigation Governance & Compliance Reporting Analysis & Filtering Optimization Communication & Education Proactive Monitoring Policy Review Monitoring 55 enterprise health systems representing over 217 Hospitals Ranging in size from 50 90K employees 306,000 Total Employees

About Baptist Health Baptist Health in Jacksonville, FL Baptist Health is the largest nonprofit healthcare provider in northeast Florida 6 Hospitals 19 Imaging Locations 61 Outpatient Locations Baptist Health has been named the Most Preferred Healthcare Provider in the Jacksonville area every year since 1990 by the National Research Corporation Baptist Health has been serving their community since 1955 and remains the area s only locally owned and governed healthcare provider Baptist Health has been a FairWarning customer since 2009 and became a Managed Privacy Services customer in August of 2014

Why Managed Privacy Services As existing FairWarning customer: Continual Automated Auditing Alerts Outsourcing Initial Investigations Privacy Analyst Expertise in data analytics

Getting Started The Foundation A strong foundation is essential for a sustainable program. Managed Privacy Services helps with: Guidance on documentation of decisions regarding monitoring program Review of Key Policies Providing a proven Workflow and Validation Process Communication and Education Plan and materials Enforced Policy recommendations based on industry and benchmarking

Getting Started

Privacy Analyst: Behind the Scenes

Privacy Analyst: Behind the Scenes 12

Working Together Relationship Building - Collaboration Scheduled weekly meetings Discussion topics Review manager responses Outside concerns Request for assistance Feedback: How am I doing?

Open Communication Growing the Relationship Touching base throughout week: Reviewing documentation Updating resolutions from managers for system accuracy Ad hoc reporting identifying patient complaints Benchmarking versus care providers of similar size Additional work flows for clarification Sharing up-to-date industry news Managers are reaching out directly for educational materials etc.

Results: Culture of Compliance Organizational Awareness Program is gaining publicity employees aware they are being watched Privacy policy review Using educational materials Manager training Quick notices: Care Connections and Baptist Brief once a month Best Practices In 8 months - Alerts are down Enforced policies Centralized repository for investigations

Roadmap Future Opportunities Work with FairWarning on recommendations 1-2 more enforced policies by Oct (fiscal year) At least 4 more enforced policies by end of FY2016 Advanced Threat Detection Statistical Analysis & Trending 8 more sources over the next year

Final Thoughts Building Confidence Managed Privacy Services, has enabled us to enhance our privacy program through outsourcing! Ann Marie Harvey Privacy Manager Baptist Health

Questions Please submit via the WebEx Q&A or Chat windows to the right side of your screen. For more information, please visit: www.fairwarning.com

Thank you for joining us! Ann Marie Harvey Privacy Manager Baptist Health Vinson Cao Privacy Analyst FairWarning, Inc. Chuck Burbank Director of Managed Privacy Services FairWarning, Inc.

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback