AGENDA: CERTIFICATION PRECONFERENCE
MONDAY, MARCH 22, 2021
(Separate registration required. Registration includes preparatory course, practice exam and certification exam.)
CERTIFIED CYBER SECURITY ARCHITECTSM (CCSASM) TRAINING
Learning Objectives:
- Examine how to establish a compliance and cybersecurity program based on the NIST Cybersecurity Framework.
- Step through the new DoD cybersecurity mandate, CMMC, a standard for securing the cyber supply chain.
- Leverage NIST standards for incident response, encryption and other key areas for a credible, audit-ready, HIPAA compliance program.
- Understand how to align your HIPAA compliance program with the NIST Cybersecurity Framework.
10:00 am EST
Welcome, Introduction and CCSA Course Content
Uday O. Ali Pabrai, MSEE, CMMC RP, CISSP, HITRUST (CCSFP)
Chief Executive and Co-founder, ecfirst (A HITRUST Authorized External Assessor & CMMC RPO), Irvine, CA
Chief Executive and Co-founder, ecfirst (A HITRUST Authorized External Assessor & CMMC RPO), Irvine, CA
12:30 pm EST
Adjournment/Visit Exhibit Hall
OPENING PLENARY SESSION: PRIVACY
1:00 pm EST
Welcome, Introductions and Summit Overview
Adam Greene, JD, MPH
Partner and Co-chair, Health Information, & HIPAA Practice, Davis Wright Tremaine LLP, HIPAA Summit Distinguished Service Award Winner, Former Senior Health Information Technology and Privacy Specialist, Office for Civil Rights, US Department of Health and Human Services, Washington, DC (Co-chair)
Partner and Co-chair, Health Information, & HIPAA Practice, Davis Wright Tremaine LLP, HIPAA Summit Distinguished Service Award Winner, Former Senior Health Information Technology and Privacy Specialist, Office for Civil Rights, US Department of Health and Human Services, Washington, DC (Co-chair)
1:30 pm EST
OCR Keynote Address
Timothy Noonan, JD
Deputy Director, Health Information Privacy, US Department of Health and Human Services, Washington, DC
Deputy Director, Health Information Privacy, US Department of Health and Human Services, Washington, DC
2:00 pm EST
OCR Update on HIPAA Compliance and Enforcement
Serena Mosley-Day, JD
Senior Advisor for HIPAA Compliance and Enforcement, Office for Civil Rights, US Department of Health and Human Services, Former Assistant Regional Counsel, Social Security Administration, Washington, DC
Senior Advisor for HIPAA Compliance and Enforcement, Office for Civil Rights, US Department of Health and Human Services, Former Assistant Regional Counsel, Social Security Administration, Washington, DC
2:30 pm EST
OCR Update on HIPAA Policy Update
Marissa Gordon-Nguyen, MPH, JD
Senior Advisor for HIPAA Policy, US Department of Health and Human Services, Washington, DC
Senior Advisor for HIPAA Policy, US Department of Health and Human Services, Washington, DC
3:00 pm EST
OCR Faculty Q&A
3:30 pm EST
Break/Visit Exhibit Hall
3:45 pm EST
FTC Update
Elisa K. Jillson, JD
Attorney, Division of Privacy and Identity Protection, Bureau of Consumer Protection, US Federal Trade Commission, Washington, DC
Attorney, Division of Privacy and Identity Protection, Bureau of Consumer Protection, US Federal Trade Commission, Washington, DC
4:15 pm EST
Update on 42 CFR Part 2, the Privacy Rule that Governs Substance Use Disorder Treatment Records
Mitchell Berger, MPH (Invited)
Office of Policy, Planning and Innovation, Substance Abuse, and Mental Health Services Administration (SAMHSA), Rockville, MD
Office of Policy, Planning and Innovation, Substance Abuse, and Mental Health Services Administration (SAMHSA), Rockville, MD
4:45 pm EST
EEOC Guidance for Managing Employee Medical Information
Joyce Walker-Jones, JD
Senior Attorney Advisor, Americans with Disabilities Act (ADA) and Genetic Information Nondiscrimination Act (GINA) Policy Division, Office of Legal Counsel, US Equal, Employment Opportunity Commission (EEOC), Washington, DC
Senior Attorney Advisor, Americans with Disabilities Act (ADA) and Genetic Information Nondiscrimination Act (GINA) Policy Division, Office of Legal Counsel, US Equal, Employment Opportunity Commission (EEOC), Washington, DC
5:15 pm EST
Lessons Learned from Emerging Privacy Data Threats during a Pandemic
Russ Branzell, MS
President & CEO, CHIME, Ann Arbor, Michigan
President & CEO, CHIME, Ann Arbor, Michigan
Darren Dworkin
Senior Vice President of Enterprise Information Systems and Chief Information Officer, Cedars-Sinai Health System, Former Chief Technology Officer, Boston Medical Center, Los Angeles, CA
Senior Vice President of Enterprise Information Systems and Chief Information Officer, Cedars-Sinai Health System, Former Chief Technology Officer, Boston Medical Center, Los Angeles, CA
Gary Goodin, MBA, ZTSX-I
Chief Information Security Officer, Seattle Children’s, Former Chief Information Security Officer, Children’s Hospital Los Angeles, Seattle, WA
Chief Information Security Officer, Seattle Children’s, Former Chief Information Security Officer, Children’s Hospital Los Angeles, Seattle, WA
Jacki Monson, JD, CHC, CHPC
Vice President, Chief Privacy and Information Security Officer, Sutter Health, Former Chief Privacy Officer, Mayo Clinic, Sacramento, CA
Vice President, Chief Privacy and Information Security Officer, Sutter Health, Former Chief Privacy Officer, Mayo Clinic, Sacramento, CA
Nick Culbertson, MD
Cofounder and Chief Executive Officer, Protenus, Former Green Beret and 2 Bronze Star Recipient, Baltimore, MD (Moderator)
Cofounder and Chief Executive Officer, Protenus, Former Green Beret and 2 Bronze Star Recipient, Baltimore, MD (Moderator)