AGENDA: DAY II
TUESDAY, MARCH 23, 2021
DAY II MORNING MINI SUMMITS
MINI SUMMITS ROUND I: 10:00 am – 11:00 am EST
Mini-Summit 1: Workforce Training: HIPAA Privacy Basics
10:00 am EST
Introduction and Discussion
Adam Greene, JD, MPH
Partner and Co-chair, Health Information, & HIPAA Practice, Davis Wright Tremaine LLP, HIPAA Summit Distinguished Service Award Winner, Former Senior Health Information Technology and Privacy Specialist, Office for Civil Rights, US Department of Health and Human Services, Washington, DC
Partner and Co-chair, Health Information, & HIPAA Practice, Davis Wright Tremaine LLP, HIPAA Summit Distinguished Service Award Winner, Former Senior Health Information Technology and Privacy Specialist, Office for Civil Rights, US Department of Health and Human Services, Washington, DC
Mini-Summit 2: Key Findings and Takeaways From OCR HIPAA Audit Findings & How the California Consumer Privacy Act Affects Health Information
Part I: Key Findings and Takeaways From OCR HIPAA Audit Findings
10:00 am EST
Introduction and Discussion
Jennifer L. Urban, JD, CIPP/US
Partner, Foley & Lardner LLP, Founder, Midwest Cyber Security Alliance, Milwaukee, WI
Partner, Foley & Lardner LLP, Founder, Midwest Cyber Security Alliance, Milwaukee, WI
Part II: How the California Consumer Privacy Act Affects Health Information
10:30 am EST
Introduction and Discussion
Paul T. Smith, JD
Partner, Hooper, Lundy and Bookman, PC, San Francisco, CA
Partner, Hooper, Lundy and Bookman, PC, San Francisco, CA
Mini-Summit 3: Securing Telehealth Remote Patient Monitoring Ecosystem
10:00 am EST
Introductions and Panel Discussion
Kevin Littlefield, MS
Principal Cyber Security Researcher, MITRE Corp; Former Information Security Officer, The Brigham and Women’s Hospital and Brigham and Women’s Physicians’ Organization; Cambridge, MA
Principal Cyber Security Researcher, MITRE Corp; Former Information Security Officer, The Brigham and Women’s Hospital and Brigham and Women’s Physicians’ Organization; Cambridge, MA
Julie Snyder
Principal/Privacy Domain Capability Area Lead, MITRE Corp. Principal Cybersecurity and Privacy Engineer, National Cybersecurity Federally Funded Research and Development Center (NCF), Houston, TX
Principal/Privacy Domain Capability Area Lead, MITRE Corp. Principal Cybersecurity and Privacy Engineer, National Cybersecurity Federally Funded Research and Development Center (NCF), Houston, TX
Mini-Summit 4: Top Five Health-Care Privacy, Security Developments to Watch in 2021
10:00 am EST
Introduction and Discussion
Kirk J. Nahra, JD
Partner and Co-chair of the Privacy and Cybersecurity Practice, Wilmer Hale, Fellow, The Cordell Institute for Policy in Medicine & Law, Adjunct Professor, Washington College of Law, American University, Washington, DC
Partner and Co-chair of the Privacy and Cybersecurity Practice, Wilmer Hale, Fellow, The Cordell Institute for Policy in Medicine & Law, Adjunct Professor, Washington College of Law, American University, Washington, DC
11:00 am EST
Transition Break/Visit Exhibit Hall
MINI SUMMITS ROUND II 11:15 am – 12:15 pm EST
Mini-Summit 5: Workforce Training: HIPAA Breach Notification Rule and HIPAA Enforcement Rule Basics
11:15 am EST
Introduction and Discussion
Iliana Peters, JD, LLM
Shareholder, Polsinelli, Former Acting Deputy Director, Health Information Privacy, Office for Civil Rights, US Department of Health and Human Services, Washington, DC
Shareholder, Polsinelli, Former Acting Deputy Director, Health Information Privacy, Office for Civil Rights, US Department of Health and Human Services, Washington, DC
Mini-Summit 6: Privacy and Security issues in Health Care Artificial Intelligence initiatives
11:15 am EST
Introductions and Panel Discussion
Donald DePass, JD
Senior Associate, Hogan Lovells, Washington, DC
Senior Associate, Hogan Lovells, Washington, DC
Madeline (Maddy) H. Gitomer, MSEd, JD
Senior Associate, Hogan Lovells; Former Professional Staff,US Senate Committee on Health, Education, Labor and Pensions; Washington, DC
Senior Associate, Hogan Lovells; Former Professional Staff,US Senate Committee on Health, Education, Labor and Pensions; Washington, DC
Mini-Summit 7: Responding to a NOTICE OF BREACH OF UNSECURED
PROTECTED HEALTH INFORMATION from a Business Associate!
11:15 am EST
Introductions and Panel Discussion
Lisa Nee, JD
Legal Counsel, Accenture LLP, New York, NY
Legal Counsel, Accenture LLP, New York, NY
Mark Joseph Fox, CHC, CHPC, CHRC
Privacy and Research Compliance Officer, American College of Cardiology, Washington, DC (Co-moderator)
Privacy and Research Compliance Officer, American College of Cardiology, Washington, DC (Co-moderator)
Thora A. Johnson, JD
Partner and Chair of Healthcare Practice, Venable, LLP, Baltimore, MD (Co-moderator)
Partner and Chair of Healthcare Practice, Venable, LLP, Baltimore, MD (Co-moderator)
Mini-Summit 8: Opportunities from Combining Clinical and Administrative Data
11:15 am EST
Introductions and Panel Discussion
Lauren Riplinger, JD
Vice President, Policy & Government Affairs, American Health Information Management Association, Former Chief of Staff/Senior Policy Advisor, US House of Representatives, Washington, DC
Vice President, Policy & Government Affairs, American Health Information Management Association, Former Chief of Staff/Senior Policy Advisor, US House of Representatives, Washington, DC
Chantal Worzala, PhD
Principal, Alazro Consulting, Former Vice President, Health Information Policy and Operations, American Hospital Association, Former Senior Analyst, Medicare Payment Advisory Commission, Takoma Park, MD
Principal, Alazro Consulting, Former Vice President, Health Information Policy and Operations, American Hospital Association, Former Senior Analyst, Medicare Payment Advisory Commission, Takoma Park, MD
12:15 pm EST
Luncheon Break/Visit Exhibit Hall
DAY II PLENARY SESSION: SECURITY & CYBERSECURITY
1:00 pm EST
Co-Chair Welcome and Overview of Health Care Cybersecurity and Security Environment
Iliana Peters, JD, LLM
Shareholder, Polsinelli, Former Acting Deputy Director, Health Information Privacy, Office for Civil Rights, US Department of Health and Human Services, Washington, DC (Co-chair)
Shareholder, Polsinelli, Former Acting Deputy Director, Health Information Privacy, Office for Civil Rights, US Department of Health and Human Services, Washington, DC (Co-chair)
1:30 pm EST
OCR Cybersecurity Update
Nicholas Heesters, MEng, JD, CIPP
Senior Advisor for Cybersecurity, Office for Civil Rights, US Department of Health and Human Services, Philadelphia, PA
Senior Advisor for Cybersecurity, Office for Civil Rights, US Department of Health and Human Services, Philadelphia, PA
2:00 pm EST
Cybersecurity Initiatives for the Health Care Sector
Greg Singleton
Director, Health Sector, Cybersecurity Coordination Center, US Department of Health and Human Services, Former Senior Advisor, US Department of Energy, Arlington, VA
Director, Health Sector, Cybersecurity Coordination Center, US Department of Health and Human Services, Former Senior Advisor, US Department of Energy, Arlington, VA
2:30 pm EST
A Fireside Chat with Tonya Ugoretz, FBI Deputy Assistant Director, Cyber Division, on Cybersecurity
Tonya Ugoretz
Deputy Assistant Director, Cyber Division, FBI, Adjunct Associate Professor, Center for Security Studies, Georgetown University, Adjunct Faculty, Center for Intelligence Training, FBI Academy, Washington, DC
Deputy Assistant Director, Cyber Division, FBI, Adjunct Associate Professor, Center for Security Studies, Georgetown University, Adjunct Faculty, Center for Intelligence Training, FBI Academy, Washington, DC
Iliana Peters, JD, LLM
Shareholder, Polsinelli, Former Acting Deputy Director, Health Information Privacy, Office for Civil Rights, US Department of Health and Human Services, Washington, DC (Moderator)
Shareholder, Polsinelli, Former Acting Deputy Director, Health Information Privacy, Office for Civil Rights, US Department of Health and Human Services, Washington, DC (Moderator)
3:00 pm EST
Break/Visit Exhibit Hall
3:15 pm EST
FDA Cybersecurity Update
Aftin Ross, PhD
Senior Project Manager, Center for Devices and Radiological Health (CDRH), US Food and Drug Administration (FDA), Washington, DC
Senior Project Manager, Center for Devices and Radiological Health (CDRH), US Food and Drug Administration (FDA), Washington, DC
3:45 pm EST
HITRUST CSF Certification
Uday Ali Pabrai, MSEE, CISSP, HITRUST (CCSFP)
Chief Executive Officer and Co-founder, ecfirst, (A HITRUST Authorized External Assessor), Irvine, CA
Chief Executive Officer and Co-founder, ecfirst, (A HITRUST Authorized External Assessor), Irvine, CA
4:15 pm EST
The Critical Role C-suite Executives and Board Members in
Enterprise Cyber Risk Management (ECRM) Transformation Play
Ben Carroll
Chief Data Officer, CareFirst BlueCross BlueShield, Former Head of Data Management, Envision Healthcare, Philadelphia, PA
Chief Data Officer, CareFirst BlueCross BlueShield, Former Head of Data Management, Envision Healthcare, Philadelphia, PA
Bob Chaput, MA, CISSP, HCISPP, CRISC, CIPP/US
Executive Chairman, Clearwater; Former Vice President, Technology Operations, GE Information Services; Nashville, TN
Executive Chairman, Clearwater; Former Vice President, Technology Operations, GE Information Services; Nashville, TN
Changrong Ji, MS
Founder and Chief Executive Officer, A3.AI, Social and Venture Capitalist, Former Enterprise Architect, CareFirst BlueCross BlueShield, Owings Mills, MD
Founder and Chief Executive Officer, A3.AI, Social and Venture Capitalist, Former Enterprise Architect, CareFirst BlueCross BlueShield, Owings Mills, MD
James Noga, MS
Vice President and Chief Information Officer, Mass General Brigham, Instructor, Graduate Program in Health Informatics, Northeastern University, Boston, MA
Vice President and Chief Information Officer, Mass General Brigham, Instructor, Graduate Program in Health Informatics, Northeastern University, Boston, MA
Gregory Ewing, JD, MPH, CISSP, CSSA
Vice President, Compliance & Regulatory Affairs, Trillium Health, Inc. Former Manager, Information Security, Governance and Compliance, CareFirst BlueCross BlueShield, Former HIPAA Security Manager, Air Force Medical Service, Pittsford, NY (Moderator)
Vice President, Compliance & Regulatory Affairs, Trillium Health, Inc. Former Manager, Information Security, Governance and Compliance, CareFirst BlueCross BlueShield, Former HIPAA Security Manager, Air Force Medical Service, Pittsford, NY (Moderator)
5:00 pm EST
Annual Chief Security Officers Best Practices Roundtable
Erik Decker, MS
Chief Security and Privacy Officer, University of Chicago Medicine, Co-Lead, Task Group for Implementing the Cybersecurity Act of 2015, 405D Legislation within the Healthcare Sector, US Department of Health and Human Services, Chicago, IL
Chief Security and Privacy Officer, University of Chicago Medicine, Co-Lead, Task Group for Implementing the Cybersecurity Act of 2015, 405D Legislation within the Healthcare Sector, US Department of Health and Human Services, Chicago, IL
David Holtzman, JD, CIPP
Principal, HITprivacy, LLC, Former Senior Adviser for HIT and the HIPAA Security Rule, Office for Civil Rights, US Department of Health and Human Services Austin, TX
Principal, HITprivacy, LLC, Former Senior Adviser for HIT and the HIPAA Security Rule, Office for Civil Rights, US Department of Health and Human Services Austin, TX
Anahi Santiago, MBA
Chief Information Security Officer, Christiana Care Health System, Former Director, Information Security and Support Services, Albert Einstein Healthcare Network, Philadelphia, PA
Chief Information Security Officer, Christiana Care Health System, Former Director, Information Security and Support Services, Albert Einstein Healthcare Network, Philadelphia, PA
John C. Parmigiani
President, John C. Parmigiani and Associates, LLC, HIPAA Summit Distinguished Service Award Winner, Former Director of Enterprise Standards, HCFA, Ellicott City, MD (Moderator/Co-chair)
President, John C. Parmigiani and Associates, LLC, HIPAA Summit Distinguished Service Award Winner, Former Director of Enterprise Standards, HCFA, Ellicott City, MD (Moderator/Co-chair)