HIPAA Compliance and Business Associates: Managing the Business Associates Relationship 'Safely'

William Miaoulis
Instructor William Miaoulis
Product Id 601797
Duration 60 Minutes  
Version Recorded
Original Price $295
Special Offer Price $10
Refund Policy
Access recorded version only for one participant; unlimited viewing for 6 months

HIPAA Compliance and Business Associates: Managing the Business Associates Relationship 'Safely'

Overview:
This session will cover the intricate relationship between the patient, the covered entity and business associates. This will include processes to identify the business associate, the process to qualify a business associate, key ways to exchange information and why you should encourage the business associates to sign your business associate agreement. This session will include SOC 1 and SSAE 16 documents as well as providing the key questions that you should ask every business associate.

Why should you attend: Covered entities have been entrusted to protect patient health information, but what happens when they share that information with a third party? What steps can the organization take to minimize the risks to the patient and the organization? There are many examples of organizations having to advise HHS, the Media, and the patient about a breach caused by their business associates. This session will review an approach for conducting due diligence to mitigate the risk imposed on organizations by sharing this data.

Areas Covered in the Session:
  • Identifying your business associates
  • What steps, questions, etc. should be taken before giving access to a business associate?
  • How will the exchange of information occur?
  • What if the Business Associate wants you to sign their agreement?
  • Documenting your agreements and due diligence

Who Will Benefit:
  • Information Security Officers
  • Risk Managers
  • Compliance Officers
  • Privacy Officer
  • Health Information Managers
  • Information Technology Managers
  • Medical Office Managers
  • Chief Financial Officers
  • Systems Managers
  • Legal Counsel
  • Operations Directors

Educational Objectives(S)
Upon completion of this activity, participants will be able to:
  • Discuss the processes to identify the business associate, the process to qualify a business associate, key ways to exchange information and why you should encourage the business associates to sign your business associate agreement.
Speaker Profile
William Miaoulis CISA, CISM, is a senior healthcare information system (IS) professional with more than 20 years of healthcare Information Security experience. Bill is the founder and primary consultant for HSP Associates. Prior to starting HSP Associates in January of 2013, Bill was the Chief Information Security Officer (CISO) and led the HIPAA security and privacy consulting efforts for Phoenix Health Systems for over 11 years and also was the HIPAA Consulting Manager for SAIC for 18 months. For seven years, Miaoulis was the University of Alabama Birmingham (UAB) Medical Center’s Information Security Officer, where he instituted the first security and privacy programs at UAB starting in October 1992.

Miaoulis contributes to the industry by frequently speaking at conferences on security matters, including recent sessions on Risk Analysis/Risk Management, Creating and Implementing Effective Security Policies, Understanding the HIPAA Security Rule, and Creating Effective Security Incident Response Procedures. Miaoulis has been interviewed and quoted by numerous publications including: SC Magazine, Health Data Management, Briefings on Healthcare Security, Computerworld; and Health Information Compliance Insider. Miaoulis has worked with AHIMA to produce the book “Preparing for a HIPAA Security Compliance Assessment” and also has worked on updating the AHIMA Security Practice Briefs.

Sign Up for Our Newsletter