Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

HIPAA 2012 - Safeguarding Health Information: Building Assurance through HIPAA Security

NIST and the Department of Health and Human Services (HHS), Office for Civil Rights (OCR) co-hosted the 5th annual conference, Safeguarding Health Information: Building Assurance through HIPAA Security on June 6 & 7, 2012 at the Ronald Reagan Building and International Trade Center in Washington, D.C.

The conference explored the current health information technology security landscape and the Health Insurance Portability and Accountability Act (HIPAA) Security Rule. This event highlighted the present state of health information security, and practical strategies, tips and techniques for implementing the HIPAA Security Rule. The Security Rule set federal standards to protect the confidentiality, integrity and availability of electronic protected health information by requiring HIPAA covered entities and their business associates to implement and maintain administrative, physical and technical safeguards.

The conference offered important keynote addresses and plenary sessions as well as breakout sessions following two learning tracks around specific areas of security management and technical assurance. Presentations covered a variety of current topics including updates on HHS health information privacy and security initiatives, OCR's enforcement of health information privacy and security activities, integrating security safeguards into health IT, safeguards to secure mobile devices, removing sensitive data from the Internet, and more.

Selected Presentations
June 7, 2012 Type
Breach Notification for HIPAA Covered Entities and Business Associates (Federal Data Breach Response of Health and Consumer Protected Information)
David Holtzman - OCR
Alain Sheer - FTC
Data Breach Strikes - Nerds & Geeks Unite: Effective Cooperation Between Privacy and Technical Experts
Paul Luehr - Stroz Friedberg
Gerard Stegmaier - Wilson Sonsini Goodrich & Rosati
Meaningful Use Crosswalk to the Security Rule
Adam Greene - Davis Wright Tremaine LLP
Susan Miller
Sherry Wilson - Jopari Solutions
Jim Sheldon-Dean - Lewis Creek Systems, LLC
OCR Audit Program: 2012 HIPAA Privacy and Security Audits
Linda Sanches - Health and Human Services
Security Testing and Assessment Methodologies
Karen Scarfone - Scarfone Cybersecurity
June 6, 2012 Type
Beyond HIPAA: The FTC Privacy Report
Cora Han - FTC, Division of Privacy and Identity Protection
Data Integrity in an Era of EHRs, HIEs, and HIPAA: A Health Information Management Perspective (Integrity Protection)
Dan Rode - American Health Information Management Association
Endpoint Security for Mobile Devices
David Shepherd - LMI
Establishing an Access Auditing Program
Cindy Matson - CHC, CHPC
Managing Security and Privacy Risk in Healthcare Applications
Dr. Ron Ross - NIST
Mobile Computing in Healthcare: Privacy and Security Considerations and Available Resources
Lisa Gallagher - Privacy and Security HIMSS
Overview: Office of the Chief Privacy Officer Security-Related Initiatives
Joy Pritts
Security of Health Information When Maximizing Accessibility and Usability
Matt Quinn - NIST
David Baquis - US Accessibility Board
View From the Cloud: Security Assurance Considerations for a Purchaser
Mac McMillan - Cynergistek

Event Details

Starts: June 06, 2012 - 09:00 AM EDT
Ends: June 07, 2012 - 04:45 PM EDT

Format: In-person Type: Conference

Agenda Website

Attendance Type: Open to public


Ronald Reagan Building and International Trade Center, 1300 Pennsylvania Avenue, NW, Washington, DC 20004

Created January 09, 2017, Updated June 22, 2020