The HIPAA Security Rule: Recommendations and Resources

Cybersecurity threats abound, and few industries are at risk more than healthcare providers and other entities that hold or handle patient information. Unfortunately, the HIPAA Security Rule (one-third of the chief HIPAA rules) is likely much less well-understood and attended to than other HIPAA regulations, such as the Privacy Rule and the Breach Notification Rule. This is in spite of the fact that paying attention to and complying with the Security Rule will help every provider manage and mitigate their risk of PHI breaches. In this program, presented by Adam Laughton, we aim to help familiarize providers and other parties with the basic jargon of HIPAA security, along with the structure and content of Security Rule obligations.  We also identify key resources that are available to help providers assess and improve their own HIPAA security compliance. Finally, we identify a couple of areas of emerging threats and how the current HIPAA rule does (or does not) address them.

Learning Objectives:

1. Orient attendees to the basic structure of the HIPAA Security Rule and its obligations

2. Identify and secure resources needed to assess HIPAA security compliance

3. Review how changing cybersecurity conditions and technologies may affect HIPAA security posture for providers