Healthcare, Cybersecurity, and HIPAA - New Threats and New Guidance


Instructor: Jim Sheldon-Dean
Product ID: 705532

  • Duration: 90 Min
The session will include discussion of preparing for a cyber attack, preventing and limiting the damage from cyber attacks, being prepared with backups and contingency plans, responding to the attack, and recovering after the attack has been brought under control. Also included is a discussion of how cyber attacks relate to breaches that may be reportable under HIPAA, and how such attacks should be evaluated under the rules.
Last Recorded Date: Feb-2018


1 Person Unlimited viewing for 6 month info Recorded Link and Ref. material will be available in My CO Section
(For multiple locations contact Customer Care)

Downloadable file is for usage in one location only. info Downloadable link along with the materials will be emailed within 2 business days
(For multiple locations contact Customer Care)



Customer Care

Fax: +1-650-362-2367

Email: [email protected]

Read Frequently Asked Questions

Why Should You Attend:

Cybersecurity has become one of the key issues for healthcare as malicious actors seek to interfere with healthcare delivery systems by locking up and/or destroying data and even physical systems, or even denying Internet access to broad areas of the country. The threats have only begun and promise to become more serious and more damaging. Cybersecurity threats are high impact, high likelihood events of the highest risk level.

In this session, we will examine how following the requirements of the HIPAA Security Rule and specifically taking into consideration cyber-threats can help a healthcare entity prepare itself to defend against cyber-attacks and the significant impacts to privacy, security, and patient care and safety that can result. You will learn about the latest guidance and tools for assisting in preparation and response to cyber-attacks, and what to do if the attack is successful and creates an incident that must be managed and recovered from.

We will discuss the NIST Cybersecurity Framework and its five steps to deal with Cyber-risk: Identify the assets you wish to protect, Protect those assets, Detect any threats to the assets, Respond to the threats, and then Recover from the event. The four tiers of implementation will be described, and the steps in establishing a Cybersecurity program will be explained.

Areas Covered in the Webinar:

  • How the HIPAA Security Rule addresses Cybersecurity, and how to use the rule to prevent cyber-attacks
  • How Cybersecurity is different from other kinds of security issues and why it deserves special attention
  • The NIST Cybersecurity Framework and how to use it to prepare for and respond to Cybersecurity events
  • New initiatives by HHS to provide resources and information to assist during a wave of cyber-attacks
  • The importance of regular, repeated training to help prevent the initiation of an attack on your systems
  • How to respond to and follow up on an attack that may result in a breach of information
  • Recommendations for preventing and responding to Cybersecurity attacks involving Ransomware

Who Will Benefit:

This webinar will provide valuable assistance to all personnel in Medical offices, practice groups, hospitals, academic medical centers, insurers, business associates (shredding, data storage, systems vendors, billing services, etc). the titles are:

  • Compliance Director
  • CEO
  • CFO
  • Privacy Officer
  • Security Officer
  • Information Systems Manager
  • HIPAA Officer
  • Chief Information Officer
  • Health Information Manager
  • Healthcare Counsel/Lawyer
  • Office Manager
  • Contracts Manager
Instructor Profile:
Jim Sheldon-Dean

Jim Sheldon-Dean
Principal and Director of Compliance Services, Lewis Creek Systems, LLC

Jim Sheldon-Dean is the founder and director of compliance services at Lewis Creek Systems, LLC, a Vermont-based consulting firm founded in 1982, providing information privacy and security regulatory compliance services to a variety of health care providers, businesses, universities, small and large hospitals, urban and rural mental health and social service agencies, health insurance plans, and health care business associates. He serves on the HIMSS Information Systems Security Workgroup, has co-chaired the Electronic Data Interchange Privacy and Security Workgroup, currently serves on the WEDI Breach Notification sub-workgroup, and is a recipient of the 2011 WEDI Award of Merit. He is a frequent speaker regarding HIPAA and information privacy and security compliance issues at seminars and conferences, including speaking engagements at AHIMA national and regional conventions and WEDI national conferences, and before regional HFMA chapter meetings and state hospital associations.

Mr. Sheldon-Dean has nearly 30 years of experience in policy analysis and implementation, business process analysis, information systems and software development. His experience includes leading the development of health care related websites; award-winning, best-selling commercial utility software; and mission-critical, fault-tolerant communications satellite control systems. In addition, he has eight years of experience doing hands-on medical work as a Vermont certified volunteer emergency medical technician. Mr. Sheldon-Dean received his B.S. degree, summa cum laude, from the University of Vermont and his master's degree from the Massachusetts Institute of Technology.

Topic Background:

Healthcare information has been protected according to regulations under the Health Insurance Portability and Accountability Act (HIPAA) since 2003 but new attacks by malicious external actors (hackers) pose new threats to the confidentiality, integrity, and availability of Protected Health Information (PHI). The National Institute of Standards and Technology (NIST) has released Cybersecurity guidance to assist with preparations to avoid and respond to threats, and HHS has launched a new Healthcare Cybersecurity Communications Integration Center (HCCIC) to assist healthcare entities in the event of cyber-attacks.

Follow us :



Refund Policy

Our refund policy is governed by individual products and services refund policy mentioned against each of offerings. However in absence of specific refund policy of an offering below refund policy will be effective.
Registrants may cancel up to two working days prior to the course start date and will receive a letter of credit to be used towards a future course up to one year from date of issuance. ComplianceOnline would process/provide refund if the Live Webinar has been cancelled. The attendee could choose between the recorded version of the webinar or refund for any cancelled webinar. Refunds will not be given to participants who do not show up for the webinar. On-Demand Recordings can be requested in exchange. Webinar may be cancelled due to lack of enrolment or unavoidable factors. Registrants will be notified 24hours in advance if a cancellation occurs. Substitutions can happen any time. On-Demand Recording purchases will not be refunded as it is available for immediate streaming. However if you are not able to view the webinar or you have any concern about the content of the webinar please contact us at below email or by call mentioning your feedback for resolution of the matter. We respect feedback/opinions of our customers which enables us to improve our products and services. To contact us please email [email protected] call +1-888-717-2436 (Toll Free).




6201 America Center Drive Suite 240, San Jose, CA 95002, USA

Follow Us

facebook twitter linkedin youtube


Copyright © 2021 MetricStream
Our Policies: Terms of use | Privacy

PAYMENT METHOD: 100% Secure Transaction

payment method