Conducting Your Risk Analysis

by Sarah Harvey / April 12, 2023

How to Conduct a HIPAA Risk Analysis In this webinar, Mark Hinely will teach the process of determining risks that are common for HIPAA risk considerations.  It’s important that your organization understands the terms related to risk analysis: Vulnerability: flaw or weakness in system security procedures, design, implementation, or internal controls that could be exercised (accidentally triggered or intentionally exploited) and result in a security breach or a violation…

Moving from SSAE 16 to SSAE 18

by Sarah Harvey / December 19, 2022

Why the Change from SSAE 16 to SSAE 18? Convergence with international standards is driving this change. There have been changes on the International Statement on Attestation Engagements (ISAE) side, and in the U.S, the Auditor Standards Board (ASB), desires to converge its standards with the international community’s changes. The corresponding standard to SSAE 18, which is a U.S. only standard, relates to the new ISAE 3000. In the full…

Firewall and Router Management

by Sarah Harvey / December 19, 2022

Best Practices for Firewall and Router Management This webinar is not going to provide you with specific instructions on how to configure your individual devices. However, it will provide you with the individual attributes that you need to consider when developing your router and firewall security program. In this webinar, we will focus on discussing physical devices, running operating systems, and secure traffic rules.  If your goal is to fully…

Planning Your Risk Analysis

by KirkpatrickPrice / April 12, 2023

What Does A Complete Risk Analysis Planning Process Look Like? Why are we spending time on three separate sessions about risk analysis? A formal risk analysis is required under the Security Rule, it's something organizations consistently struggle with, and it has benefits beyond meeting the Security Rule requirement. Let's get started.  In this session, we’ll discuss the five key elements of planning a HIPAA risk analysis. Goal: There are…

Road to HIPAA Compliance: Trends in Enforcement Activity

by KirkpatrickPrice / December 19, 2022

A Conversation about Trends in HIPAA Enforcement Activity In this webinar, Joseph Kirkpatrick and Mark Hinely discuss historic and 2016 trends in OCR enforcement activity. 2016 was a record year for enforcement and these trends are the most direct way that the OCR can tell us what or where they’re looking.    Mark Hinely has chosen four cases to discuss that represent 2016 enforcement activity trends: UMass Health, St.…