Webinar Overview

A thorough and properly documented Risk Assessment is the absolute cornerstone of HIPAA compliance and the first document requested in any federal audit. This critical course provides a step-by-step guide to conducting a defensible HIPAA Risk Assessment based on the methodology used by federal auditors and the guidelines established by the National Institute of Standards and Technology (NIST).

Beyond the assessment itself, we will cover the essential aspects of the federal audit process and address the growing legal risk of patient lawsuits for wrongful disclosures of protected health information. This session is designed to move beyond theory and provide a practical, actionable framework for building a robust compliance program.

Why You Should Attend

Can you confidently answer "yes" to these critical questions?

• Have you completed a comprehensive HIPAA Risk Assessment?

• Do you know that a risk assessment is the first item the OCR will demand in an audit?

• Is your current risk assessment adequate and defensible?

• Do you have written policies in place for every implementation specification of the HIPAA Security Rule, as required, even for those you have deemed "not applicable"?

This webinar will provide clear answers and a proven path forward. You will learn to conduct a proper risk assessment point-by-point, how to avoid non-compliant shortcuts in the marketplace, and the critical process of developing customized policies and procedures based directly on your assessment findings. We will emphasize the importance of creating policies that are consistent with your actual procedures and the significant risks of relying on generic, "cookie-cutter" templates that fail to satisfy federal auditors.

Areas Covered in the Session

• The 2024 Compliance Landscape: Key updates and heightened enforcement priorities.

• Policies and Procedures: How to write, implement, and maintain policies that are both compliant and practical for your organization.

• Identifying and Mitigating Risks: A systematic approach to uncovering vulnerabilities in your administrative, physical, and technical safeguards.

• Business Associate Management: Understanding the increased burden and ensuring your vendors do not become your weakest link.

• The NIST-Based Risk Assessment: A detailed walkthrough of the proven framework for conducting a thorough and auditor-ready risk analysis.

Who Will Benefit

This webinar is essential for all entities responsible for protecting PHI, including:

• Healthcare Practice Managers

• Physicians and Medical Professionals

• Business Associates (Billing Companies, Transcription Services, IT Firms, Answering Services, Home Health Agencies)

• Medical Coders and Health Information Management Staff

• Attorneys representing healthcare organizations

• Compliance Officers and Privacy/Security Officials