U.S. flag   An official website of the United States government

HIPAA 2011 - Safeguarding Health Information: Building Assurance through HIPAA Security

The HHS Office for Civil Rights (OCR) enforces the HIPAA Privacy Rule, which protects the privacy of individually identifiable health information; the HIPAA Security Rule, which sets national standards for the security of electronic protected health information; the confidentiality provisions of the Patient Safety Rule, which protect identifiable information being used to analyze patient safety events and improve patient safety; and, the Breach Notification regulations requiring HIPAA covered entities and their business associates to notify individuals when their health information is breached.

NIST’s mission, as a non-regulatory federal agency within the U.S. Department of Commerce, is to promote U.S. innovation and industrial competitiveness by advancing measurement science, standards, and technology in ways that enhance economic security and improve our quality of life.

This conference will provide a forum to discuss the current HIT security landscape, as well as practical strategies, tips, and techniques for implementing the requirements of the HIPAA Security Rule.

Selected Presentations
May 11, 2011 Type
Breach Avoidance The Only Meaningful Safe Harbor Strategy
Mac McMillan - Cynergistek

Breach Risk of Harm Assessment
Harry Rhodes - American Health Information Management Association

HIPAA, the HITECH Act and Privacy Compliance: Not Just for the Healthcare Industry Anymore
Susan McAndrew - OCR

David Holtzman - OCR

Lock Your Data, Not Your Device
David Houlding - Intel

NIST and US Civilian Agency Cryptography
Mr. Matthew Scholl - NIST/CSD

NIST HIPAA Security Rule Toolkit
JP Chalpin - Exeter Government Services

Pay Attention! What are Your Employees Doing?
Randy Trzeciak - Carnegie Mellon SEI Insider Threat Team

Practical Medical Device Security
Lynette Sherrill - Department of Veterans Affairs

Megan Friel - VHA Healthcare Technology Management Program Office

May 10, 2011 Type
Effective Tips for Implementing a Successful Privacy & Information Security Program
Alex Eremia - MedStar Health

Shallie Bryant - MedStar HealthTechnical

FTC Proposed Privacy Framework
Loretta Garrison - Federal Trade Commission

Handling Compliance Challenges in EHRs and HIE
Susan McAndrew - OCR

Donna Dodson

Health Information Technology Security Pilot
Matthew Smith - G2

Roxanne Everetts - LMI

Health IT Policy Committee Privacy & Security Workgroup Recommendations for Privacy & Security of HIE
Deven McGraw - Center for Democracy & Technology (CDT)

Identity Proofing and NIST SP 800-63: Applications in Healthcare
Dr. Alex Barclay - Experian Decision Analytics

Nick Piazzola - Symantec

National Strategy for Trusted Identities in Cyberspace, May 10, 2011
Michael Garcia - NIST

Privacy and Security: The Role of Regional Extension Centers (RECs)
Nathan Gibson - WVMI/QI

Nicholas Heesters - QID

Adam Kehler - QIP

Laurie Fink - WVMI/QI

Risk Analysis in the Multiple-Site Practice Setting
Marian Hughlett - University of Louisville

Robin Wilcox - University of Louisville

Securing Health Information in the Cloud
Feisal Nanji - Techumen

Security Considerations for Enabling State, Regional, and National-level HIE
Eric Heflin - Medicity

Trends for the Mobility-Enabled Healthcare Enterprise and Security Threats, Vulnerabilities, and Countermeasures
Ilene Yarnoff - Booz Allen Hamilton

Brenda Ecken - Booz Allen Hamilton


Event Details

Starts: May 10, 2011 - 12:00 AM EST
Ends: May 11, 2011 - 12:00 AM EST

Format: In-person Type: Conference


Attendance Type: Open to public
Audience Type: Industry,Government,Academia


Ronald Reagan Building and International Trade Center 
1300 Pennsylvania Avenue, NW
Washington, D.C. 20004

Created December 22, 2016, Updated June 22, 2020