health it in disaster recovery
play

HEALTH IT IN DISASTER RECOVERY Presenter: Alaina Lamphear HIT IN - PowerPoint PPT Presentation

Apr 27, 2023 •294 likes •622 views

HEALTH IT IN DISASTER RECOVERY Presenter: Alaina Lamphear HIT IN DISASTER RECOVERY HEALTH IT IN DISASTER RECOVERY AGENDA Introduction About Disaster Recovery Plans Real Life Disaster Examples Electronic Health Records and Natural Disasters

  1. HEALTH IT IN DISASTER RECOVERY Presenter: Alaina Lamphear

  2. HIT IN DISASTER RECOVERY HEALTH IT IN DISASTER RECOVERY AGENDA Introduction About Disaster Recovery Plans Real Life Disaster Examples Electronic Health Records and Natural Disasters IT Disaster Recovery Plans Cybersecurity in Natural Disasters Know your HER HIPAA and Natural Disasters HIPAA Breaches: A Disaster of Another Kind

  3. PREPARATION 1994 Northridge Earthquake It is the organization’s preparedness and ability to respond and restore its systems and operations that make the difference between an extremely strenuous event that will have long-term effects and a dodged bullet.

  4. HIT IN DISASTER RECOVERY DISASTER RECOVERY PLANS Why the need to implement a Disaster Recovery Plan? Why is there the need to implement HIT into the DRP?

  5. HIT IN DISASTER RECOVERY REAL-LIFE EXAMPLES AND ALL AROUND Fires Earthquakes Tsunamis Power Outages Cyberattacks Is your organization prepared?

  6. HIT IN DISASTER RECOVERY CAMP FIRE Paradise, California November 2018 86 people killed 153,000 acres burned 14,000 residences destroyed Paradise lost 90% of its population after the fire Claimed nearly three times as many lives and structures than any other wildfire in California’s history

  7. HIT IN DISASTER RECOVERY CAMP FIRE 6:30 AM Reports of a small fire came in (November 8) 9:00 AM Fire was estimated at 2,500 acres 1:00 PM 8,000 acres Quickly grew to 20,000 acres hours later The fire grew at 80 football fields per minute!!!

  8. HIT IN DISASTER RECOVERY CAMP FIRE East Avenue Church in Chico was designated a clinic Tended to 300 patients Among 240 patients served at pop-up disaster clinic shortly after the fire, all identified as low income 60% suffered chronic illness 35% were diagnosed with a mental health condition Over 30% were uninsured 40% noted that they were without regular medical care The homes of roughly 75% of the staff and doctors had perished in the blaze

  9. HIT IN DISASTER RECOVERY CAMP FIRE: AFTER DISASTER

  10. HIT IN DISASTER RECOVERY CAMP FIRE: BEFORE DISASTER

  11. HIT IN DISASTER RECOVERY HURRICANE KATRINA New Orleans, Louisiana August 2005 1,200 people killed Cat 3 storm with winds reaching speeds as high as 120 miles per hour Costliest storm in US history ($108 billion in property damage) Many patient records were physically destroyed during Hurricane Katrina Still many paper records as EHRs were not fully adopted

  12. HIT IN DISASTER RECOVERY HURRICANE KATRINA Photo: Galveston, Texas Alexa Cross experienced: Hurricane Ike (2008) Tropical Storm Allison (2001) Hurricane Harvey (2017)

  13. HIT IN DISASTER RECOVERY ELECTRONIC HEALTH RECORDS Today nearly all healthcare facilities use EHRs Widespread EHR adoption and use better equips healthcare systems for quick response to emergency events Hurricane Harvey in Houston, Texas Hospitals affected by flooding could continue operations EHR accessibility Remotely backed up and remote/mobile applications Provider confidence Accessibility Adoption

  14. HIT IN DISASTER RECOVERY DISASTER SCENARIO: TORNADO Manhattan, Kansas June 2008 EF4 Tornado Chief Operations Officer’s home took a direct hit Just returned home, with no time to prepare Laptop was found in the yard, wide open, and still (somewhat) functioning

  15. HIT IN DISASTER RECOVERY IT DISASTER RECOVERY PLANS Where do you keep your current management plan? Hard copy Locally stored (computer, server, etc) Thumb drive Cloud storage Can you access manual? Without a computer If the power is out for an extended amount of time If location where manual is stored is inaccessible Without an internet/WiFi connection On your phone or other mobile device

  16. HIT IN DISASTER RECOVERY IT DISASTER RECOVERY PLANS Who has access to your emergency manuals? All leadership/essential management should have a copy/access Tips to remember: Utilize free tools, like Google Docs Cloud storage Accessible to all Print, laminate and keep with your home, work and car emergency kits a list of: Important organization contacts Web addresses (such as EHR remote address) Immediate disaster protocol Provide two copies of manuals to all leadership Consider keeping an encrypted copy of plans with a trusted third party, like CCALAC

  17. HIT IN DISASTER RECOVERY CYBERSECURITY AND DISASTER RECOVERY Do you have an IT recovery plan in place? Designated primary and secondary contacts Where is the list of important vendor contacts stored? Who has responsibility for any hardware that may need moved/removed? How do you host your EHR? Local hosted (ie: server on site) Multiple levels of security Located in a disaster secure location What is your backup cadence? Cloud hosted What is the backup cadence? How will you access if no internet/power What are the locations of the data centers? How many data centers contain backup?

  18. HIT IN DISASTER RECOVERY CYBERSECURITY AND DISASTER RECOVERY Multi-Factor Authentication Technology that can access PHI remotely has multi-factor authentication We use DUO at DataFile Password security Secure passwords so they are inaccessible to others Password keeper on your phone Do not write password on the outside of the thumb drive Network security Only access PHI through secure, password protected network Do not give the password to anyone but essential employees WiFi hotspot on phones VPN when accessing PHI Closed network only

  19. HIT IN DISASTER RECOVERY KNOW YOUR EHR Petaluma Health Center and eClinicalWorks eClinicalWorks campaign feature Allows mass messaging to a group based on your defined parameters Encourage patient portal adoption Know your mobile capabilities (like eClinicalTouch) and train at least two providers in usage Utilize ePrescribe functions Utilize a business associate who understands your organization and your EHR to allow for unexpected changes in patient volume If clinic is closed: Medical records can still be transferred Incoming documents can still be processed If the clinic is open: Influx of patients needing treatment, transferring records, etc. from other clinics

  20. HIT IN DISASTER RECOVERY HIPAA AND NATURAL DISASTERS Is the HIPAA Privacy Rule “waived” or “suspended” during an emergency? Generally no, unless there is an exception by the US Secretary of Health and Human Services AND: A public health emergency is declared AND The President declares an emergency or disaster under the Stafford or National Emergencies Act How does the HIPAA Privacy Rule apply to us in a disaster? Even WITHOUT a disaster waiver – patient information can be shared under certain conditions and for certain purposes such as: Treatment (as necessary to treat a patient or another person) Public health activities To persons at risk Source: https://www.hhs.gov/sites/default/files/hurricane-irma-hipaa-bulletin.pdf

  21. HIT IN DISASTER RECOVERY CYBER ATTACKS: A DISASTER OF A DIFFERENT KIND Unauthorized disclosure Ransomware Phishing Unauthorized access

  22. HIT IN DISASTER RECOVERY CYBER ATTACKS: WHY HEALTHCARE? HHS has stated that healthcare data breaches have the highest cost per record. $408 per record cost Possible reasons a healthcare record is worth more: Healthcare data race Insurance costs Late technology adopters

  23. HIT IN DISASTER RECOVERY CYBER ATTACKS: UNAUTHORIZED DISCLOSURE What is an Unauthorized Disclosure? An unauthorized disclosure occurs anytime PHI is disclosed to someone who is not authorized to received the information. Different types including: Miskey of the fax number Incorrect email address Theft or loss of device Unauthorized disclosure is the most common type of breach/violation

  24. HIT IN DISASTER RECOVERY CYBER ATTACKS: UNAUTHORIZED DISCLOSURE How can I prevent these incidents? Incorrect email address: Is your organization using an encryption software, like Zix? Theft or loss of device: Password security Sensitive information or PHI should not be saved to the hard drive Two-factor authentication Do not save passwords in browser Review basic security with your staff Always lock your computer

  25. HIT IN DISASTER RECOVERY CYBER ATTACKS: RANSOMWARE What is Ransomware? Malicious software that takes over your computer and makes it unable to use, demanding money to unlock. Several types of Malware: Ones that lock or encrypt your system Those that model themselves as fake virus software Mobile device specific items Example: https://www.youtube.com/watch?v=NJGyTiEBDZY Why would they target us – we are small! In October 2019, the largest recorded HIPAA breach as to a CHC Betty Jean Kerr People’s Health Center – St. Louis, Missouri 152,000 records affected Hackers target those that are perceived to have a smaller IT Security team

  26. HIT IN DISASTER RECOVERY CYBER ATTACKS: PHISHING What is Phishing? The act of sending fraudulent emails appearing to be from reputable people/companies in order to gain access to passwords, logins, other information. Different types including: Spear Phishing Whaling Phishing emails can lead to a larger, more intrusive problem such as Malware. Prevention is key! Do you have a spam block/firewall in place to quarantine questionable emails? Is your staff properly trained in recognizing key elements to identify phishing emails/websites? Require staff to utilize their organization’s email for all correspondence – especially that of which includes items of a sensitive or protected nature.

  27. HIT IN DISASTER RECOVERY CYBER ATTACKS: PHISHING EXAMPLES

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Disaster Recovery . How to Create a Robust Disaster Recovery Plan. Todays agenda The

Disaster Recovery . How to Create a Robust Disaster Recovery Plan. Todays agenda The

Disaster Recovery . How to Create a Robust Disaster Recovery Plan. Todays agenda The drivers behind a DR Plan Disaster Recovery Fundamentals Risk analysis for Small Business & NFP Steps to build a robust DR Plan How cloud

682 views • 22 slides
IT DISASTER RECOVERY & BUSINESS CONTINUITY PLANS IT DISASTER RECOVERY (DR) Business

IT DISASTER RECOVERY & BUSINESS CONTINUITY PLANS IT DISASTER RECOVERY (DR) Business

IT DISASTER RECOVERY & BUSINESS CONTINUITY PLANS IT DISASTER RECOVERY (DR) Business Continuity is planning and preparation to ensure an institution can continue to operate in case of serious incidents or disasters and is the ability to

471 views • 11 slides
DISASTER NEEDS FOR DISASTER NEEDS FOR FLOOD PREPARATION, RESPONSE, AND RECOVERY Linn County

DISASTER NEEDS FOR DISASTER NEEDS FOR FLOOD PREPARATION, RESPONSE, AND RECOVERY Linn County

7/30/2009 DISASTER NEEDS FOR DISASTER NEEDS FOR FLOOD PREPARATION, RESPONSE, AND RECOVERY Linn County Public Health Overview Preparation Training and Planning Community and Partnership Identification Response R

272 views • 9 slides
Disaster Recovery Planning Marcus Bendtsen Institutionen fr Datavetenskap (IDA) Avdelningen

Disaster Recovery Planning Marcus Bendtsen Institutionen fr Datavetenskap (IDA) Avdelningen

Disaster Recovery Planning Marcus Bendtsen Institutionen fr Datavetenskap (IDA) Avdelningen fr Databas- och Informationsteknik (ADIT) Disaster Recovery Planning When a disaster strikes and the business continuity plan fails to prevent

757 views • 39 slides
Integrated Mental Health Model for Disaster Recovery Paula C. Davis, LCSW-BACS Clinical

Integrated Mental Health Model for Disaster Recovery Paula C. Davis, LCSW-BACS Clinical

The Benefits of an Integrated Mental Health Model for Disaster Recovery Paula C. Davis, LCSW-BACS Clinical Director, Catholic Charities Behavioral Health Adjunct Instructor, LSU School of Social Work David C. Aguillard, MHA, MPA, MA Executive

525 views • 18 slides
Framework Introduction to the NDRF The National Disaster Recovery Framework (NDRF) was

Framework Introduction to the NDRF The National Disaster Recovery Framework (NDRF) was

Topic 3 National Disaster Recovery Framework Introduction to the NDRF The National Disaster Recovery Framework (NDRF) was released by FEMA in late 2011 to serve as a guide to promoting effective recovery practices/principles The NDRF

803 views • 21 slides
CDR Overview CDR Today we will review National Disaster Recovery Framework Federal

CDR Overview CDR Today we will review National Disaster Recovery Framework Federal

CDR Overview CDR Today we will review National Disaster Recovery Framework Federal Resources Pre-Disaster Recovery Plan Tools and Resources NDRF CDR Recovery principles Roles and responsibilities Coordinating

286 views • 15 slides
Developing a Comprehensive Disaster-Recovery Plan Prepared for CENIC by USC Information

Developing a Comprehensive Disaster-Recovery Plan Prepared for CENIC by USC Information

Developing a Comprehensive Disaster-Recovery Plan Prepared for CENIC by USC Information Technology Services March 2010 1 Why Business Continuity and Disaster Recovery? We want to provide continuous service and improved backup for

630 views • 21 slides
UNDP POST DISASTER RECOVERY PROGRAMMES APEC Seminar on Capacity Building for Disaster

UNDP POST DISASTER RECOVERY PROGRAMMES APEC Seminar on Capacity Building for Disaster

UNDP POST DISASTER RECOVERY PROGRAMMES APEC Seminar on Capacity Building for Disaster Recovery and Rehabilitation Shanghai, 27 28 Jun 2012 Hossein Sarem Kalali, UNDP About UNDP UN development network offices in 166

389 views • 27 slides
Tie 9-Steps to Disaster Recovery: How to Become Betuer Prepared for the Next Event Alessandra

Tie 9-Steps to Disaster Recovery: How to Become Betuer Prepared for the Next Event Alessandra

University of New Orleans ScholarWorks@UNO DRU Workshop 2013 Presentations Disaster Resistant University Workshop: Linking Mitigation Conferences and Workshops and Resilience 3-1-2013 Tie 9-Steps to Disaster Recovery: How to Become

658 views • 42 slides
Disaster Recovery Waivers From Pla n to Im p lem enta tion: Lessons Lea rned Suggestions to

Disaster Recovery Waivers From Pla n to Im p lem enta tion: Lessons Lea rned Suggestions to

Departm ent of Housing and Urban Developm ent Disaster Recovery Waivers From Pla n to Im p lem enta tion: Lessons Lea rned Suggestions to Other Disaster Recovery Grantees Ask for everything even if you dont think youll need it.

477 views • 21 slides
ACTUALLY TEST YOUR PLAN www.martinandassoc.com 1 Disaster Recovery using Shadow Protect March

ACTUALLY TEST YOUR PLAN www.martinandassoc.com 1 Disaster Recovery using Shadow Protect March

Disaster Recovery using Shadow Protect March Madness Lunch & Learn A GENDA Identify and Quantify Exposure Risk Evolution of Recovery Technologies Build a Recover-Ability Solution B EYOND B ACKUP E NSURING R ECOVER -A BILITY

388 views • 6 slides
Implementing the Disaster Recovery Tracking Tool Jennifer A. Horney PhD, MPH Principal

Implementing the Disaster Recovery Tracking Tool Jennifer A. Horney PhD, MPH Principal

Implementing the Disaster Recovery Tracking Tool Jennifer A. Horney PhD, MPH Principal Investigator Associate Professor, Department of Epidemiology and Biostatistics Texas A&M University School of Public Health 1266 TAMU College

466 views • 30 slides
Action Plan Development 1 The big picture A CDBG disaster recovery grantee must: Step 1

Action Plan Development 1 The big picture A CDBG disaster recovery grantee must: Step 1

Action Plan Development 1 The big picture A CDBG disaster recovery grantee must: Step 1 : Determine the effects of the disaster Step 2 : Develop a plan to respond to the most critical disaster recovery needs not addressed by other

666 views • 32 slides
Timeliness and the Art of Disbursement 2012 HUD CDBG Disaster Recovery Training Feb 13, 2012

Timeliness and the Art of Disbursement 2012 HUD CDBG Disaster Recovery Training Feb 13, 2012

Timeliness and the Art of Disbursement 2012 HUD CDBG Disaster Recovery Training Feb 13, 2012 Sandra Gunner Hugh Hyman Community Development Director Reports Manager Louisiana Office of Community Development Disaster Recovery Unit A

391 views • 20 slides
Hurricane Michael Integrated Recovery Coordination & Collaboration Hurricane Michael

Hurricane Michael Integrated Recovery Coordination & Collaboration Hurricane Michael

Hurricane Michael Integrated Recovery Coordination & Collaboration Hurricane Michael Integrated Recovery Disaster Timeline Response v. Recovery Disaster Recovery Framework Disaster Response Framework Intermediate to long-term recovery

709 views • 18 slides
INCREASING GRID RESILIENCE THROUGH DATA-DRIVEN MODELING FOR STORM OUTAGE PREDICTION AND LONG-TERM

INCREASING GRID RESILIENCE THROUGH DATA-DRIVEN MODELING FOR STORM OUTAGE PREDICTION AND LONG-TERM

INCREASING GRID RESILIENCE THROUGH DATA-DRIVEN MODELING FOR STORM OUTAGE PREDICTION AND LONG-TERM PLANNING Steven Quiring, Texas A&M University Seth Guikema, Johns Hopkins University U.S. DOE State Energy Risk Assessment Workshop Our

409 views • 39 slides
Environmental Protection Division Safe Dams Program: Overview & Discussion of Potential

Environmental Protection Division Safe Dams Program: Overview & Discussion of Potential

Environmental Protection Division Safe Dams Program: Overview & Discussion of Potential Program and Rule Changes Stakeholder Meeting February 2015 Richard Lake Dam Southwire Plant Carrolton, GA Georgia Department of Natural Resources

407 views • 38 slides
NAFS-0 8 & CSA A4 4 0 S1 -0 9 Fenestration Standards FIBERGLASS INNOVATION Introduction to

NAFS-0 8 & CSA A4 4 0 S1 -0 9 Fenestration Standards FIBERGLASS INNOVATION Introduction to

NAFS-0 8 & CSA A4 4 0 S1 -0 9 Fenestration Standards FIBERGLASS INNOVATION Introduction to Cascadia Manufacturer of fiberglass construction products - Fiberglass windows - Fiberglass doors - Fiberglass cladding support systems

1.07k views • 85 slides
Coast Smart Legislation Update CHAPTER 442 (2019) Overview 2014 Legislation: Chapter 415

Coast Smart Legislation Update CHAPTER 442 (2019) Overview 2014 Legislation: Chapter 415

Coast Smart Legislation Update CHAPTER 442 (2019) Overview 2014 Legislation: Chapter 415 (HB 615) Established Coast Smart Council; Council required to develop Coast Smart siting and design criteria 2015 Coast Smart Construction

340 views • 9 slides
HURRICANE RESILIENCE: LONG-RANGE PLANNING FOR THE PORT OF PROVIDENCE Aus7n Becker Nov. 10, 2015

HURRICANE RESILIENCE: LONG-RANGE PLANNING FOR THE PORT OF PROVIDENCE Aus7n Becker Nov. 10, 2015

HURRICANE RESILIENCE: LONG-RANGE PLANNING FOR THE PORT OF PROVIDENCE Aus7n Becker Nov. 10, 2015 URI Coastal Resources Seminar Series Review of Workshop Objec7ves Understand and comment on storm scenario & consequences Review four

628 views • 33 slides
Floridas Insurance System: a man-made disaster for

Floridas Insurance System: a man-made disaster for

Floridas Insurance System: a man-made disaster for the environment, taxpayers and the insured Chris'an R. Cmara Policy Analyst;

643 views • 27 slides
Hurricane Harvey Evacuation and Impacts to the State Operated Facilities Mike Maples Deputy

Hurricane Harvey Evacuation and Impacts to the State Operated Facilities Mike Maples Deputy

Hurricane Harvey Evacuation and Impacts to the State Operated Facilities Mike Maples Deputy Executive Commissioner State Operated Facilities Division Health and Human Services Commission November 8, 2017 Interim Charge Review the

138 views • 13 slides
In Integ egrated ed Ap Approach ches to to Cr Creating Co Community Re Resilience Designs

In Integ egrated ed Ap Approach ches to to Cr Creating Co Community Re Resilience Designs

In Integ egrated ed Ap Approach ches to to Cr Creating Co Community Re Resilience Designs We propose to develop pre- and post-disaster planning and adaptation tools for coastal communities to increase resilience. These efforts will enable

448 views • 29 slides

More recommend