8:30-10:30am | Registration and Continental Breakfast
10:30am - 12:00pm
Building a Privacy and Security Program
J. David Sims | Founder, HIPAA For MSPsWhen it comes to their cybersecurity program, many healthcare organizations are either not doing a great job or are focused on the wrong things. In this presentation, you will learn:
- Why cybersecurity is now everyone's responsibility;
- Top threats & how you can protect your patients;
- How to get favorable outcomes in a breach investigation;
- How to quickly build an effective cybersecurity program; and
- Where to get free resources to help you succeed.
12:00- 1:00pm | Lunch Break | Forager's Restaurant
1:00- 2:00pm
Security Incident Response: How to Prevent a Breach
Brandon Haggerty, CISSP, GCWN | Principal Security Analyst, DueNorth Security, LLCSecurity incidents are consistently on the rise. Breaches of major companies are constantly in the news. What you don't hear about are the smaller, unprepared organizations that are compromised on a regular basis. This lack of preparation can have major consequences, with many organizations unable to continue their operations indefinitely. In this session, you will learn about common information security incidents, how they occur, and how they can lead to a breach. An overview of the incident response plan and policy, along with employee training and other compensating controls will also be discussed.
2:00 - 2:30pm | Break
2:30 - 3:30pm
When HIPAA Meets a Cyber Breach
John DiMaggio | CEO, BlueOrange Compliance
Privacy and security of patient data is becoming even more of an issue. The healthcare industry is constantly under attack, and these attacks can cause major business disruption, lead to breaches and even affect resident safety. This session will cover HIPAA regulations with focus on cyber security, breaches and how to prepare and manage risk. We will cover the anatomy of a security incident and the intersection of HIPAA pre- and post-breach.We'll discuss ransomware risks and mitigation techniques and go over best practices for preparation, protection, response and recovery. We will also take a look at the evolving field of cyber insurance and what it covers.