The HIPAA security rule requires that healthcare organizations implement audit controls. The five steps to meeting this requirement
include:
- Determine systems or activities to be tracked or audited;
- Select the tools that will be deployed for auditing and system
activity reviews;
- Develop and deploy the Information System Activity Review and Audit Policy;
- Develop appropriate standard
operating procedures; and
- Implement the audit/system activity review process.
During "HIPAA Security Auditing, Audit Trails and Audit Logs: The Key To Ongoing Compliance," a 90-minute audio conference on CD-ROM, you learn how healthcare
organizations are implementing audit controls for HIPAA security compliance to meet ongoing HIPAA security compliance regulations.
Your expert panel of speakers, Heidi Echols, Associate, McDermott Will & Emery and Wayne Thompson, Vice President, Information Services & Technology & the Security Officer at the University of Medicine & Dentistry of New Jersey
discuss how healthcare organizations are operationalizing the HIPAA security auditing requirements, including:
- Audit steps and actual audit programs;
- Audit trail considerations;
- What to actually audit against the security regulations;
- Auditing and legacy applications;
- Auditing on a limited budget;
- Network security auditing; and
- Application level access controls, monitors and auditing.
Here's what participants said about the live audio conference:
"Good speakers...materials were easy to follow," said Deanna Brown, HIPAA Officer, University of Arkansas for Medical Sciences.
"A practical discussion of security," said the director of operations with a healthcare IT company.
Provided "actual experience in building and monitoring audit trails," said a HIPAA team member with a health plan.
You can "attend" this program right in your office and enjoy significant savings – no travel time or hassle; no hotel
expenses. It’s so convenient! Invite your staff members to listen to this conference on CD-ROM.
WHO WILL BENEFIT FROM THIS AUDIO CONFERENCE?
CIOs, CTOs, IT directors, CEOs, security and privacy officers, system and network managers, internal audit directors, HIPAA team leaders, compliance officers, legal counsel, risk managers, business development and strategic planning directors.
ABOUT YOUR PANELISTS:
Heidi Y. Echols
Heidi Y. Echols is an associate in the law firm of McDermott Will & Emery LLP based in the Firm’s Chicago office. As a member of the Health Department, her practice focuses on information technology (IT) transactions and counseling and privacy and security issues. She is also a member of the Firm's e-Business Group.
Echols' practice includes providing legal counsel on technology ventures and day-to-day matters for companies in a broad range of industries, including health, financial, consulting and IT. She also analyzes and advises clients with respect to electronic and digital signatures and online contracting issues and has experience in copyright and trademark prosecution.
Echols also has substantial experience in analysis of privacy and security issues, including the privacy and security rules promulgated under the Health Insurance Portability and Accountability Act (HIPAA) and the Gramm Leach Bliley Act. She drafts and negotiates agreements that comply with the requirements of HIPAA and the Gramm Leach Bliley Act for companies that are subject to each of these acts. She also assists clients in corporate formation and start-up matters.
Echols is a member of the Health Information Technology Practice Group of the American Health Lawyers Association, the Chicago Bar Association and the Computer Law Association. She is admitted to practice in Illinois.
Wayne Thompson
Wayne Thompson is the Vice President for Information Services & Technology at the University of Medicine & Dentistry of New Jersey. His career in information services spans 20 years.
Previously, at Thomas Jefferson University in Philadelphia, where he served as vice president and chief information officer since 2001, he managed the information systems group for the Health Sciences University, which has three colleges and a faculty practice group.
Prior to joining Thomas Jefferson, Thompson served as Chief Information Officer at the University of South Florida Health Sciences Center in Tampa, Florida. He also serves on several professional committees, including chairman of the Group on Information Resources Benchmark Committee of the Association of American Medical Colleges and on the Philadelphia Board of Directors of the Society for Information Management.