ComplianceOnline

Using a Security RFP for Regulatory Compliance (HIPAA, GLB, etc.)

Instructor: Kate Borten, CISSP, CISM
Product ID: 700402
Training Level: Basic
  • Duration: 60 Min

recorded version

$249.00
1x Person - Unlimited viewing for 6 Months
(For multiple locations contact Customer Care)
Recorded Link and Ref. material will be available in My CO Section

Training CD

$500.00
One CD is for usage in one location only.
(For multiple locations contact Customer Care)
CD and Ref. material will be shipped within 15 business days

Customer Care

Fax: +1-650-963-2556

Email: customercare@complianceonline.com

Read Frequently Asked Questions

This Security RFP training provides explicit guidance in what security features and functions to look for, as well as tips for managing the Security Request for Proposal (RFP) process.

Whether your organization builds or buys its software, your security depends on the technical capabilities built into systems. This webinar provides explicit guidance in what security features and functions to look for, as well as tips for managing the Security Request for Proposal (RFP) process.

Regulations such as HIPAA’s Security Rule don’t require that healthcare entities immediately replace systems that fall short of good security controls. However, any time new software is being considered, security controls need to be treated as seriously as end-user business functionality. These security controls are critical for protecting the privacy of patient and customer data, and for ensuring data integrity and availability … as required for compliance with HIPAA and other security regulations.

In addition, an organization seeking the trust of its patients or customers needs to be confident that its security controls meet reasonable standards. The RFP allows you to validate your existing systems and see how they measure up or where they fall short.

Developers and software vendors need to hear what specific features and functions the security-savvy organization is looking for to help meet increasingly stringent public and regulatory expectations. High-level guidelines are a start, but often the devil is in the details not spelled out by government documents. Learn from a security expert and former software developer what concrete security controls your organization should expect in its software.

Areas Covered in the seminar:

  • Benefits of using a Security RFP
  • When and how to use a Security RFP
  • Tips for managing the RFP process
  • Negotiating for enhanced security
  • Specific user identification and account-level controls
  • Detailed password features and other authentication
  • User authorization and user privilege controls
  • Auditing features
  • Various data integrity controls
  • Security management functions and controls

Who Will Benefit:

This webinar will provide valuable information for organizations directly and indirectly subject to information security regulations such as HIPAA’s Security Rule. Any business with information assets to protect will also benefit. The webinar will further benefit software vendors and any organization seeking to develop and market products with robust, reliable security functionality.



Within organizations, individuals who will benefit include:
  • IT/IS management and staff
  • Information security officer (director, manager)
  • Risk management, privacy and compliance officers
  • Contract management department
  • Marketing department

Instructor Profile:

Kate Borten, president and founder of The Marblehead Group, Inc. brings to clients a unique combination of expertise in information security, privacy, and IT from over twenty years inside the healthcare industry. She led the first corporate-wide information security program at Massachusetts General Hospital, and she is the former Chief Information Security Officer at CareGroup, a major healthcare system based in Boston.

Ms. Borten is a nationally-recognized expert on HIPAA and health information privacy and security, and a frequent speaker on the topic. She is a contributing author to Auerbach Publications’ Information Security Management Handbook; author of HIPAA Security Made Simple (HCPro, Inc. 2003) and Guide to HIPAA Security Risk Analysis (HCPro, Inc. 2004); contributor to newsletters on HIPAA privacy and security; and three-year chair of HealthSec, the premier annual conference on information security in healthcare.

The Marblehead Group (marbleheadgroup.com) provides security training seminars, risk assessment, security program development, and HIPAA compliance auditing to the healthcare industry.

Follow us :
ComplianceOnline Banking Summit 2016 | Risk Management and Data Security - 80390SEM
ComplianceOnline Medical Device Summit 2017

Product Reviews

This product hasn't received any reviews yet. Be the first to review this product! Write review

Best Sellers
You Recently Viewed
    Loading