Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

HIPAA 2011 - Safeguarding Health Information: Building Assurance through HIPAA Security

The HHS Office for Civil Rights (OCR) enforces the HIPAA Privacy Rule, which protects the privacy of individually identifiable health information; the HIPAA Security Rule, which sets national standards for the security of electronic protected health information; the confidentiality provisions of the Patient Safety Rule, which protect identifiable information being used to analyze patient safety events and improve patient safety; and, the Breach Notification regulations requiring HIPAA covered entities and their business associates to notify individuals when their health information is breached.

NIST’s mission, as a non-regulatory federal agency within the U.S. Department of Commerce, is to promote U.S. innovation and industrial competitiveness by advancing measurement science, standards, and technology in ways that enhance economic security and improve our quality of life.

This conference will provide a forum to discuss the current HIT security landscape, as well as practical strategies, tips, and techniques for implementing the requirements of the HIPAA Security Rule.

Selected Presentations
May 11, 2011 Type
Breach Avoidance The Only Meaningful Safe Harbor Strategy
Mac McMillan - Cynergistek
Breach Risk of Harm Assessment
Harry Rhodes - American Health Information Management Association
HIPAA, the HITECH Act and Privacy Compliance: Not Just for the Healthcare Industry Anymore
Susan McAndrew - OCR
David Holtzman - OCR
Lock Your Data, Not Your Device
David Houlding - Intel
NIST and US Civilian Agency Cryptography
Mr. Matthew Scholl - NIST
NIST HIPAA Security Rule Toolkit
JP Chalpin - Exeter Government Services
Pay Attention! What are Your Employees Doing?
Randy Trzeciak - Carnegie Mellon SEI Insider Threat Team
Practical Medical Device Security
Lynette Sherrill - Department of Veterans Affairs
Megan Friel - VHA Healthcare Technology Management Program Office
May 10, 2011 Type
Effective Tips for Implementing a Successful Privacy & Information Security Program
Alex Eremia - MedStar Health
Shallie Bryant - MedStar HealthTechnical
FTC Proposed Privacy Framework
Loretta Garrison - Federal Trade Commission
Handling Compliance Challenges in EHRs and HIE
Susan McAndrew - OCR
Donna Dodson
Health Information Technology Security Pilot
Matthew Smith - G2
Roxanne Everetts - LMI
Health IT Policy Committee Privacy & Security Workgroup Recommendations for Privacy & Security of HIE
Deven McGraw - Center for Democracy & Technology (CDT)
Identity Proofing and NIST SP 800-63: Applications in Healthcare
Dr. Alex Barclay - Experian Decision Analytics
Nick Piazzola - Symantec
National Strategy for Trusted Identities in Cyberspace, May 10, 2011
Michael Garcia - NIST
Privacy and Security: The Role of Regional Extension Centers (RECs)
Nathan Gibson - WVMI/QI
Nicholas Heesters - QID
Adam Kehler - QIP
Laurie Fink - WVMI/QI
Risk Analysis in the Multiple-Site Practice Setting
Marian Hughlett - University of Louisville
Robin Wilcox - University of Louisville
Securing Health Information in the Cloud
Feisal Nanji - Techumen
Security Considerations for Enabling State, Regional, and National-level HIE
Eric Heflin - Medicity
Trends for the Mobility-Enabled Healthcare Enterprise and Security Threats, Vulnerabilities, and Countermeasures
Ilene Yarnoff - Booz Allen Hamilton
Brenda Ecken - Booz Allen Hamilton

Event Details

Starts: May 10, 2011 - 12:00 AM EDT
Ends: May 11, 2011 - 12:00 AM EDT

Format: In-person Type: Conference


Attendance Type: Open to public
Audience Type: Industry,Government,Academia


Ronald Reagan Building and International Trade Center 
1300 Pennsylvania Avenue, NW
Washington, D.C. 20004

Created December 22, 2016, Updated June 22, 2020