Disclaimer This webinar may be recorded. This webinar ... · Today’s Electronic Data...
Transcript of Disclaimer This webinar may be recorded. This webinar ... · Today’s Electronic Data...
![Page 1: Disclaimer This webinar may be recorded. This webinar ... · Today’s Electronic Data Interchange… So Much More than Claims •Wednesday, March 15, ... Credit Card Data (Worth](https://reader033.fdocuments.net/reader033/viewer/2022051808/600990f95baba537c76e99a0/html5/thumbnails/1.jpg)
![Page 2: Disclaimer This webinar may be recorded. This webinar ... · Today’s Electronic Data Interchange… So Much More than Claims •Wednesday, March 15, ... Credit Card Data (Worth](https://reader033.fdocuments.net/reader033/viewer/2022051808/600990f95baba537c76e99a0/html5/thumbnails/2.jpg)
DisclaimerThis webinar may be recorded. This webinar presents a sampling of best practices and overviews, generalities, and some laws. This should not be used as legal advice. Itentive recognizes that there is not a “one size fits
all” solution for the ideas expressed in this webinar; we invite you to follow up directly with us for more personalized information as it pertains
to your specific practice and issues.
Thank you, and enjoy the webinar.
![Page 3: Disclaimer This webinar may be recorded. This webinar ... · Today’s Electronic Data Interchange… So Much More than Claims •Wednesday, March 15, ... Credit Card Data (Worth](https://reader033.fdocuments.net/reader033/viewer/2022051808/600990f95baba537c76e99a0/html5/thumbnails/3.jpg)
About Us
Our passion is to provide solutions for our healthcare provider partners which help them improve patient care, enhance the patient experience and maintain a financially healthy practice.
Since 2003 we have specialized in NextGen®
Healthcare services including:
• Consulting
• Hosting
• Customization
• And productivity tools such as ChartGuard® and RefundManager®
![Page 4: Disclaimer This webinar may be recorded. This webinar ... · Today’s Electronic Data Interchange… So Much More than Claims •Wednesday, March 15, ... Credit Card Data (Worth](https://reader033.fdocuments.net/reader033/viewer/2022051808/600990f95baba537c76e99a0/html5/thumbnails/4.jpg)
Upcoming Webinars
Today’s Electronic Data Interchange… So Much More than Claims
• Wednesday, March 15, 2017
Also, keep your eyes peeled for any other webinar invites dependent on future regulatory changes
![Page 5: Disclaimer This webinar may be recorded. This webinar ... · Today’s Electronic Data Interchange… So Much More than Claims •Wednesday, March 15, ... Credit Card Data (Worth](https://reader033.fdocuments.net/reader033/viewer/2022051808/600990f95baba537c76e99a0/html5/thumbnails/5.jpg)
NOT another HIPAA Compliance Webinar!
Lowering
the
Cost of
Compliance
![Page 6: Disclaimer This webinar may be recorded. This webinar ... · Today’s Electronic Data Interchange… So Much More than Claims •Wednesday, March 15, ... Credit Card Data (Worth](https://reader033.fdocuments.net/reader033/viewer/2022051808/600990f95baba537c76e99a0/html5/thumbnails/6.jpg)
Introductions
Christ Floros
Managing Consultant, Security and Compliance
Itentive Healthcare Solutions
Chelsea Grover
Marketing Communications Coordinator
Itentive Healthcare Solutions
![Page 7: Disclaimer This webinar may be recorded. This webinar ... · Today’s Electronic Data Interchange… So Much More than Claims •Wednesday, March 15, ... Credit Card Data (Worth](https://reader033.fdocuments.net/reader033/viewer/2022051808/600990f95baba537c76e99a0/html5/thumbnails/7.jpg)
NOT another HIPAA Compliance Webinar!
Lowering
the
Cost of
Compliance
![Page 8: Disclaimer This webinar may be recorded. This webinar ... · Today’s Electronic Data Interchange… So Much More than Claims •Wednesday, March 15, ... Credit Card Data (Worth](https://reader033.fdocuments.net/reader033/viewer/2022051808/600990f95baba537c76e99a0/html5/thumbnails/8.jpg)
Lowering the cost of compliance
HIPAA compliance is on the minds of most of today’s healthcare leaders. Reports of breaches, fines and clarifications of responsibilities flood in through emails and articles. Although most understand the requirements, many are faced with the problem of implementation and the burden of the costs.
In this webinar we will review what is at risk and present solutions that help in the adoption of a HIPAA compliant security program.
![Page 9: Disclaimer This webinar may be recorded. This webinar ... · Today’s Electronic Data Interchange… So Much More than Claims •Wednesday, March 15, ... Credit Card Data (Worth](https://reader033.fdocuments.net/reader033/viewer/2022051808/600990f95baba537c76e99a0/html5/thumbnails/9.jpg)
HIPAA Security Rule
• The purpose of the Security Rule is to ensure that every covered entity has implemented safeguards to protect the confidentiality, integrity and availability of electronic protected health information.
• Check the box mentality
• Risk = Threat ∗ Vulnerability ∗ Impact
![Page 10: Disclaimer This webinar may be recorded. This webinar ... · Today’s Electronic Data Interchange… So Much More than Claims •Wednesday, March 15, ... Credit Card Data (Worth](https://reader033.fdocuments.net/reader033/viewer/2022051808/600990f95baba537c76e99a0/html5/thumbnails/10.jpg)
Value of Information
Credit Card Data
(Worth $.25 to $1)
Patient Data
(Worth $10 to $50)
Vs.
![Page 11: Disclaimer This webinar may be recorded. This webinar ... · Today’s Electronic Data Interchange… So Much More than Claims •Wednesday, March 15, ... Credit Card Data (Worth](https://reader033.fdocuments.net/reader033/viewer/2022051808/600990f95baba537c76e99a0/html5/thumbnails/11.jpg)
ePHI Breaches
• 2015
113 million patients affected (Anthem breach 80 million)
270 reported breaches
• 2016 (through October)
14.3 million patients affected
252 reported breaches
![Page 12: Disclaimer This webinar may be recorded. This webinar ... · Today’s Electronic Data Interchange… So Much More than Claims •Wednesday, March 15, ... Credit Card Data (Worth](https://reader033.fdocuments.net/reader033/viewer/2022051808/600990f95baba537c76e99a0/html5/thumbnails/12.jpg)
HIPAA Fines
• 2015
$ 6.1 Million
• 2016
$ 22.84 Million
![Page 13: Disclaimer This webinar may be recorded. This webinar ... · Today’s Electronic Data Interchange… So Much More than Claims •Wednesday, March 15, ... Credit Card Data (Worth](https://reader033.fdocuments.net/reader033/viewer/2022051808/600990f95baba537c76e99a0/html5/thumbnails/13.jpg)
What does a Data Breach Cost?
• $221 per record in Financial Sector
• $355 per record in Healthcare Sector
• In US probability of having a breach has risen to 24%
• 50% of breaches caused by criminal or malicious attack
Ponemon Institue 2016 report sponsored by IBM
![Page 14: Disclaimer This webinar may be recorded. This webinar ... · Today’s Electronic Data Interchange… So Much More than Claims •Wednesday, March 15, ... Credit Card Data (Worth](https://reader033.fdocuments.net/reader033/viewer/2022051808/600990f95baba537c76e99a0/html5/thumbnails/14.jpg)
Doing the math
• 10,000 records ∗ $355 per record = $ 3.5 million
• 25,000 records ∗ $355 per record = $ 8.9 million
• 50,000 records ∗ $355 per record = $ 17.8 million
![Page 15: Disclaimer This webinar may be recorded. This webinar ... · Today’s Electronic Data Interchange… So Much More than Claims •Wednesday, March 15, ... Credit Card Data (Worth](https://reader033.fdocuments.net/reader033/viewer/2022051808/600990f95baba537c76e99a0/html5/thumbnails/15.jpg)
How do we protect ourselves?
• Perform comprehensive HIPAA Security Risk Analysis
• Develop remediation plan to address gaps in compliance
• Identify and maintain evidence of compliance
• Monitor for changes that may present new vulnerabilities
• Rinse and repeat
![Page 16: Disclaimer This webinar may be recorded. This webinar ... · Today’s Electronic Data Interchange… So Much More than Claims •Wednesday, March 15, ... Credit Card Data (Worth](https://reader033.fdocuments.net/reader033/viewer/2022051808/600990f95baba537c76e99a0/html5/thumbnails/16.jpg)
Challenges to managing the risk
• Regulations provide the What without the How
• Monitoring the volume of information generated through audit logs
• Identifying changes or additions affecting risks and opening vulnerability
• Our day jobs!
![Page 17: Disclaimer This webinar may be recorded. This webinar ... · Today’s Electronic Data Interchange… So Much More than Claims •Wednesday, March 15, ... Credit Card Data (Worth](https://reader033.fdocuments.net/reader033/viewer/2022051808/600990f95baba537c76e99a0/html5/thumbnails/17.jpg)
How do I effectively manage my HIPAA compliance?
![Page 18: Disclaimer This webinar may be recorded. This webinar ... · Today’s Electronic Data Interchange… So Much More than Claims •Wednesday, March 15, ... Credit Card Data (Worth](https://reader033.fdocuments.net/reader033/viewer/2022051808/600990f95baba537c76e99a0/html5/thumbnails/18.jpg)
How can we help
Streamline the SRA process
• Providing comprehensive Security Risk Analysis
• Our analysts walk you through the process of identifying and documenting risks through simple questions and interview
• The entire process is documented in the cloud for reference
![Page 19: Disclaimer This webinar may be recorded. This webinar ... · Today’s Electronic Data Interchange… So Much More than Claims •Wednesday, March 15, ... Credit Card Data (Worth](https://reader033.fdocuments.net/reader033/viewer/2022051808/600990f95baba537c76e99a0/html5/thumbnails/19.jpg)
How can we help
Action planning after the SRA
• Develop remediation plan addressing gaps in compliance
• Online Action Plan to record individual remediation efforts leading to the final remediation of gap including documentation and evidence.
![Page 20: Disclaimer This webinar may be recorded. This webinar ... · Today’s Electronic Data Interchange… So Much More than Claims •Wednesday, March 15, ... Credit Card Data (Worth](https://reader033.fdocuments.net/reader033/viewer/2022051808/600990f95baba537c76e99a0/html5/thumbnails/20.jpg)
How can we help
Tools that bring it all together
• The aforementioned cloud based Risk Assessment tool
• Organizes SRA through role based interviews
• Acts as repository for documentation
• Tracks and drives remediation plan
![Page 21: Disclaimer This webinar may be recorded. This webinar ... · Today’s Electronic Data Interchange… So Much More than Claims •Wednesday, March 15, ... Credit Card Data (Worth](https://reader033.fdocuments.net/reader033/viewer/2022051808/600990f95baba537c76e99a0/html5/thumbnails/21.jpg)
How can we help
Reporting
• Customized reports providing relevant information
• Users who have not accessed systems
• User accounts violating security policy
• Security level changes
• Domain security settings
![Page 22: Disclaimer This webinar may be recorded. This webinar ... · Today’s Electronic Data Interchange… So Much More than Claims •Wednesday, March 15, ... Credit Card Data (Worth](https://reader033.fdocuments.net/reader033/viewer/2022051808/600990f95baba537c76e99a0/html5/thumbnails/22.jpg)
How can we help
Alerting
• Appearance of ePHI in unauthorized locations
• Security changes to sensitive systems
• Network device config changes
• Scanning devices to ensure compliance enabled
• Detect unauthorized devices
![Page 23: Disclaimer This webinar may be recorded. This webinar ... · Today’s Electronic Data Interchange… So Much More than Claims •Wednesday, March 15, ... Credit Card Data (Worth](https://reader033.fdocuments.net/reader033/viewer/2022051808/600990f95baba537c76e99a0/html5/thumbnails/23.jpg)
How can we help
Demonstrable evidence of compliance
• Security Risk Assessment and documentation
• Reports provide documentation of reviews
• Alerts provide proof of active compliance with security policies
![Page 24: Disclaimer This webinar may be recorded. This webinar ... · Today’s Electronic Data Interchange… So Much More than Claims •Wednesday, March 15, ... Credit Card Data (Worth](https://reader033.fdocuments.net/reader033/viewer/2022051808/600990f95baba537c76e99a0/html5/thumbnails/24.jpg)
This process is not about living
in fear of an audit.
• Due diligence
Have we carefully considered the threats and
vulnerabilities in our environment?
• Due care
Have we implemented and verified all that is
reasonably required to avoid a breach?
It is about avoiding a breach.
![Page 25: Disclaimer This webinar may be recorded. This webinar ... · Today’s Electronic Data Interchange… So Much More than Claims •Wednesday, March 15, ... Credit Card Data (Worth](https://reader033.fdocuments.net/reader033/viewer/2022051808/600990f95baba537c76e99a0/html5/thumbnails/25.jpg)
Questions
Christ Floros
• Managing Consultant, Security and Compliance At Itentive Healthcare Solutions
• 224-220-5533
![Page 26: Disclaimer This webinar may be recorded. This webinar ... · Today’s Electronic Data Interchange… So Much More than Claims •Wednesday, March 15, ... Credit Card Data (Worth](https://reader033.fdocuments.net/reader033/viewer/2022051808/600990f95baba537c76e99a0/html5/thumbnails/26.jpg)
Thank you
![Page 27: Disclaimer This webinar may be recorded. This webinar ... · Today’s Electronic Data Interchange… So Much More than Claims •Wednesday, March 15, ... Credit Card Data (Worth](https://reader033.fdocuments.net/reader033/viewer/2022051808/600990f95baba537c76e99a0/html5/thumbnails/27.jpg)
Chicago | Columbus | Itentive.com