privacy information security tackling trends threats
play

Privacy & Information Security Tackling Trends & Threats - PDF document

Mar 25, 2024 •22 likes •102 views

Privacy & Information Security Tackling Trends & Threats December 12, 2014 Norma A. Chitvanni RHIT, CHPS nchitvan@bidmc.harvard.edu Agenda Omnibus Rule Pay Out of Pocket 2013 Mobile clinical equipment Email security

  1. Privacy & Information Security Tackling Trends & Threats December 12, 2014 Norma A. Chitvanni RHIT, CHPS nchitvan@bidmc.harvard.edu Agenda  Omnibus Rule Pay Out of Pocket 2013  Mobile clinical equipment  Email security  Training & Education  Keep Information Private (KIP)  Phishing  Business Associates  OCR Audits  Information Security and Privacy committee  You Know Me Video 1

  2. Omnibus-Pay out of Pocket  Restriction for pay out of pocket for services  Challenging process  May be for partial services  Different from self pay  Ensure no release to insurance company  Payment, at time of service or later  Request each time Mobile Clinical Equipment  Stolen ultrasound machine  Patients notified  Locator device  Patient information stored on the machine  Reported breach to OCR  Formed a task force  Policy development  Education 2

  3. Secure Transmission of Email  Send Secure-encryption of emails Use # Secure before subject  Proof Point system  Monitoring of emails  Feedback to staff  Friendly encryption message-PFAC  Transport Layer Security Connection  Secure File Transfer for large files Training & Education Information Security & Privacy  Annual Mandatory education  Includes test and attestation  New Employee Orientation, IS&P training  Learning Management System (LMS)  Monitoring of completion of training  Corrective Action modules  Keep Information Private (KIP) Annual Awareness Campaign 3

  4. KIP Awareness Campaign  Posters  Tent Cards for cafeteria tables  Labels on food containers  Handouts  Plasma screen displays  Focus on Phishing  Logo 4

  5. 5

  6. Phishing  Focus on Phishing Used props during the campaign to boost awareness  Handouts-Phishing –FAQ’s  Bowl of Swedish Fish & Gold Fish  Raffle/ drawing for box of Swedish Fish  Fishing rods-Melissa and Doug  Campaign video Business Associate Agreements  New Omnibus Requirements Effective date March 26, 2013 Compliance date September 23, 2013  Existing BAAs could continue to operate for a one year period from the compliance date (September 22, 2014)  Perform BAA audits/ reviews 6

  7. OCR Audit 169 Items 78 Security 81 Privacy 10 Breach Performed mock audit on the Privacy and Breach items. Readiness Binder and electronic folder Annual review / check the OCR website Information Security & Privacy Committee (IS&P)  Consists of 32 members  Meets Monthly  Addresses IS&P issues  Approves Policies  Discuss Breaches  Creates Policies  Identifies issues, creates task force  Reports back to IS&P  Reports to Management Compliance Audit & Risk Com.  Reports to Board Compliance Audit and Risk Com. 7

  8. “You Know Me” Video  Patient Family Advisory Committee  Sent to all workforce  Included in our New Employee Orientation  Introduced our Information Security and Privacy Intranet site  Award winning-MaHIMA-Team Excellence Award 2013  New England Society for Healthcare communications-Silver Lamplighter Award  Video 8

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Latest Trends in Mobile Security By M K Chaithanya C-DAC Hyderabad Outline Introduction

Latest Trends in Mobile Security By M K Chaithanya C-DAC Hyderabad Outline Introduction

Latest Trends in Mobile Security By M K Chaithanya C-DAC Hyderabad Outline Introduction Statistics of Mobile Usage Current State of Mobile Security Recent Attacks Various Mobile Threats Security & Privacy

1.03k views • 57 slides
Mobile Security Trends and Emerging Threats Sandra J.H. Rolnicki ForenSecure April 28, 2017

Mobile Security Trends and Emerging Threats Sandra J.H. Rolnicki ForenSecure April 28, 2017

Mobile Security Trends and Emerging Threats Sandra J.H. Rolnicki ForenSecure April 28, 2017 Agenda (1) Macro- and Micro-Trends Impacting Mobile (2) Vulnerabilities in the Mobile Ecosystem (3) Threat Actors and Emerging Threats (4) Mobile

244 views • 11 slides
Threats to Data: Legal Compliance Challenges at the Intersection of Privacy and Security William

Threats to Data: Legal Compliance Challenges at the Intersection of Privacy and Security William

Threats to Data: Legal Compliance Challenges at the Intersection of Privacy and Security William Denny Secure Delaware Workshop September 24, 2019 Common Cyber Incidents Espionage & surveillance Business email compromise

609 views • 27 slides
CPSC410/611: Security Security Security Attacks Security Threats Crypto

CPSC410/611: Security Security Security Attacks Security Threats Crypto

CPSC 410 / 611 : Operating Systems CPSC410/611: Security Security Security Attacks Security Threats Crypto Authentication Examples SSL Security Threats Breach of confidentiality unauthorized access to

458 views • 18 slides
CS573 Data Privacy and Security Data Privacy and Security in Healthcare Data Privacy and Security

CS573 Data Privacy and Security Data Privacy and Security in Healthcare Data Privacy and Security

CS573 Data Privacy and Security Data Privacy and Security in Healthcare Data Privacy and Security in Healthcare Li Xiong Healthcare security and privacy HIPAA overview Research survey on information security and privacy in healthcare

1.05k views • 57 slides
17Nov19 Information Security Essentials Recognizing Threats in Your Daily Routine This

17Nov19 Information Security Essentials Recognizing Threats in Your Daily Routine This

17Nov19 Information Security Essentials Recognizing Threats in Your Daily Routine This module will teach you what is information security, how to identify and avoid potential security risks in the workplace and beyond. 1 Introduction

406 views • 7 slides
SWIFT Customer Security Programme (CSP) Promoting information security in the financial

SWIFT Customer Security Programme (CSP) Promoting information security in the financial

SWIFT Customer Security Programme (CSP) Promoting information security in the financial community November 5th, 2017 Alain Desausoi, Deputy CISO, SWIFT Cybersecurity trends in 2017 and beyond Increase and expansion of cyber threats

480 views • 15 slides
===!" Laboratories Security threats Bots by numbers the botnet owners in

===!" Laboratories Security threats Bots by numbers the botnet owners in

Securing the I nternet Threats, Trends and Tussles Dr. Roger P. Karrer Senior Research Scientist Deutsche Telekom Laboratories TU Berlin Berlin, Germ any Deutsche Telekom ===!" Laboratories Security threats Bots by numbers

131 views • 11 slides
$ Lesson Ten Consumer Privacy 04/09 privacy and information information privacy: privacy that

$ Lesson Ten Consumer Privacy 04/09 privacy and information information privacy: privacy that

Presentation Slides $ Lesson Ten Consumer Privacy 04/09 privacy and information information privacy: privacy that involves the rights of individuals in relation to information about them that is circulating in society. why privacy is an

318 views • 13 slides
Privacy as a Service Raymond Cheng Build practical cloud services that protect user privacy from

Privacy as a Service Raymond Cheng Build practical cloud services that protect user privacy from

Privacy as a Service Raymond Cheng Build practical cloud services that protect user privacy from powerful threats 2 3 Powerful Threats to User Privacy Organized Crime Nation-State Actors 4 Powerful Threats to User Privacy Gather

1.56k views • 104 slides
Privacy and Quaero's Quest for the Perfect Search Engine: Threats and Opportunities Michael

Privacy and Quaero's Quest for the Perfect Search Engine: Threats and Opportunities Michael

Privacy and Quaero's Quest for the Perfect Search Engine: Threats and Opportunities Michael Zimmer, PhD Fellow, Information Society Project Yale Law School Privacy and Quaero's Quest for the Perfect Search Engine: Threats and Opportunities

643 views • 27 slides
Privacy Challenges in RFID Gildas Avoine Information Security Group Universit e catholique de

Privacy Challenges in RFID Gildas Avoine Information Security Group Universit e catholique de

Privacy Challenges in RFID Gildas Avoine Information Security Group Universit e catholique de Louvain Belgium SUMMARY Background about RFID Privacy: Information Leakage Privacy: Malicious Traceability Is Privacy a Research Challenge?

343 views • 32 slides
THREE REGULATORS: TACKLING THE ROUGE VALLEY HOSPITAL PRIVACY BREACH Sherry Liang | Assistant

THREE REGULATORS: TACKLING THE ROUGE VALLEY HOSPITAL PRIVACY BREACH Sherry Liang | Assistant

THREE REGULATORS: TACKLING THE ROUGE VALLEY HOSPITAL PRIVACY BREACH Sherry Liang | Assistant Commissioner, Tribunal Services | Office of the Information and Privacy Commissioner/Ontario Brigitte Brousseau | Detective Constable | Ontario

793 views • 25 slides
$ Lesson Fourteen Consumer Privacy 04/09 privacy and information information privacy: privacy

$ Lesson Fourteen Consumer Privacy 04/09 privacy and information information privacy: privacy

Presentation Slides $ Lesson Fourteen Consumer Privacy 04/09 privacy and information information privacy: privacy that involves the rights of individuals in relation to information about them that is circulating in society. why privacy is an

429 views • 13 slides
Trends in Data Security and Privacy Li7ga7on and Insurance 2015 Verizon Data Breach Report

Trends in Data Security and Privacy Li7ga7on and Insurance 2015 Verizon Data Breach Report

4/16/16 Trends in Data Security and Privacy Li7ga7on and Insurance 2015 Verizon Data Breach Report 79,790 security incidents 2,122 confirmed data breaches Top industries affected: Public, Informa7on, and Financial Services (same as

181 views • 14 slides
Healthcare privacy and security Li Xiong CS573 Data Privacy and Security Patients Are Concerned

Healthcare privacy and security Li Xiong CS573 Data Privacy and Security Patients Are Concerned

Healthcare privacy and security Li Xiong CS573 Data Privacy and Security Patients Are Concerned Did you know... 77 percent of all Americans feel their personal health information privacy is very important, and 84 percent said they

769 views • 50 slides
FEC decoder SMCS & SMCS Lite DPC AGGA 2 & EVI 32 for space F.Beghin, D. de Saint

FEC decoder SMCS & SMCS Lite DPC AGGA 2 & EVI 32 for space F.Beghin, D. de Saint

Aerospace Product Line Atmel Wireless & Microcontrollers FEC decoder SMCS & SMCS Lite DPC AGGA 2 & EVI 32 for space F.Beghin, D. de Saint Roman,T.Corbire, G. Mantelet, ATMEL WM, France ESTEC, Noordwijk, The Netherlands Final

257 views • 23 slides
Future Proofing EVs to be a Grid Asset Electrifying the Transportation and Building Sectors in

Future Proofing EVs to be a Grid Asset Electrifying the Transportation and Building Sectors in

Future Proofing EVs to be a Grid Asset Electrifying the Transportation and Building Sectors in the PJM Footprint December 18, 2019 Erika H. Myers Principal, Transportation Electrification Clean + Modern Grid Utility Business Models |

191 views • 17 slides
- A circumpolar initiative - Fredrik Perster Peter Pouplier Palmr and Skedsmo

- A circumpolar initiative - Fredrik Perster Peter Pouplier Palmr and Skedsmo

Arctic SDI The Arctic SDI Arctic Spatial Data Infrastructure - A circumpolar initiative - Fredrik Perster Peter Pouplier Palmr and Skedsmo www.arctic-sdi.org October 2011 1 Arctic SDI The purpose with the Arctic SDI is... to

400 views • 21 slides
Q2 2019 EARNINGS PRESENTATION PeerStream, Inc. | OTCQB: PEER August 2019 Safe Harbor This

Q2 2019 EARNINGS PRESENTATION PeerStream, Inc. | OTCQB: PEER August 2019 Safe Harbor This

Q2 2019 EARNINGS PRESENTATION PeerStream, Inc. | OTCQB: PEER August 2019 Safe Harbor This presentation is for discussion purposes only. Certain material is based upon third party information that we consider reliable, but we do not represent

280 views • 13 slides
MRSO Update Gerry Halligan 13 May 2015 Market Message 010 40,000 2013 2014 2015 35,000

MRSO Update Gerry Halligan 13 May 2015 Market Message 010 40,000 2013 2014 2015 35,000

MRSO Update Gerry Halligan 13 May 2015 Market Message 010 40,000 2013 2014 2015 35,000 30,000 25,000 20,000 15,000 10,000 5,000 0 Septembe January February March April May June July August October November December r 2013

350 views • 14 slides
Reverse Cycle Walking and its Applications Sarah Miracle and Scott Yilek University of St. Thomas

Reverse Cycle Walking and its Applications Sarah Miracle and Scott Yilek University of St. Thomas

Reverse Cycle Walking and its Applications Sarah Miracle and Scott Yilek University of St. Thomas Format Preserving Encryption Example: Existing database with millions of US social security numbers 9 digit numbers First 3 digits

881 views • 73 slides
Inside the black - box children rights in the digital age Conceio Costa Jos Rogado

Inside the black - box children rights in the digital age Conceio Costa Jos Rogado

Inside the black - box children rights in the digital age Conceio Costa Jos Rogado Carla Sousa Sara Henriques Children Rights in the Digital Age The United Nations Convention on the Rights of the Child (1989) Children have

507 views • 17 slides
Lossy Trapdoor Functions and Their Applications Chris Peikert Brent Waters SRI International 1

Lossy Trapdoor Functions and Their Applications Chris Peikert Brent Waters SRI International 1

Lossy Trapdoor Functions and Their Applications Chris Peikert Brent Waters SRI International 1 / 15 On Losing Information 2 / 15 On Losing Information 2 / 15 On Losing Information 2 / 15 On Losing Information 2 / 15 On Losing

925 views • 71 slides

More recommend