Bryan S. Cline, Ph.D., Director, IS Risk Management
Health care security and compliance requirements are generally both vague and varied. And while JCAHO and CMS have offered implementation guidance, many if not most health care entities approach security and compliance risk in a haphazard fashion, essentially "siloed" from other institutions. While some uniformity has been obtained through the use of commercially available compliance frameworks such as the UCF, these implementations are still relatively custom--especially with respect to the control practices identified to support specific controls or control objectives. However, this does not have to be the case. This presentation addresses the development and implementation of a cost-effective security and compliance risk management framework that supports overall IT governance within the enterprise.
Bryan Cline will be co-presenting with Cliff Baker who is the VP and Chief Strategy Officer for HITRUST. He has worked with a variety of organizations on OIG and CMS HIPAA security related projects.