Using a Security RFP for Regulatory Compliance (HIPAA, GLB, etc.)

Instructor: Kate Borten, CISSP, CISM
Product ID: 700402
Training Level: Basic
  • Duration: 60 Min

recorded version

1x Person - Unlimited viewing for 6 Months
(For multiple locations contact Customer Care)
Recorded Link and Ref. material will be available in My CO Section
Last Recorded Date: May-2007

Training CD / USB Drive

One CD/USB is for usage in one location only.
(For multiple locations contact Customer Care)
CD/USB and Ref. material will be shipped within 15 business days

Customer Care

Fax: +1-650-362-2367


Read Frequently Asked Questions

This Security RFP training provides explicit guidance in what security features and functions to look for, as well as tips for managing the Security Request for Proposal (RFP) process.

Whether your organization builds or buys its software, your security depends on the technical capabilities built into systems. This webinar provides explicit guidance in what security features and functions to look for, as well as tips for managing the Security Request for Proposal (RFP) process.

Regulations such as HIPAA’s Security Rule don’t require that healthcare entities immediately replace systems that fall short of good security controls. However, any time new software is being considered, security controls need to be treated as seriously as end-user business functionality. These security controls are critical for protecting the privacy of patient and customer data, and for ensuring data integrity and availability … as required for compliance with HIPAA and other security regulations.

In addition, an organization seeking the trust of its patients or customers needs to be confident that its security controls meet reasonable standards. The RFP allows you to validate your existing systems and see how they measure up or where they fall short.

Developers and software vendors need to hear what specific features and functions the security-savvy organization is looking for to help meet increasingly stringent public and regulatory expectations. High-level guidelines are a start, but often the devil is in the details not spelled out by government documents. Learn from a security expert and former software developer what concrete security controls your organization should expect in its software.

Areas Covered in the seminar:

  • Benefits of using a Security RFP
  • When and how to use a Security RFP
  • Tips for managing the RFP process
  • Negotiating for enhanced security
  • Specific user identification and account-level controls
  • Detailed password features and other authentication
  • User authorization and user privilege controls
  • Auditing features
  • Various data integrity controls
  • Security management functions and controls

Who Will Benefit:

This webinar will provide valuable information for organizations directly and indirectly subject to information security regulations such as HIPAA’s Security Rule. Any business with information assets to protect will also benefit. The webinar will further benefit software vendors and any organization seeking to develop and market products with robust, reliable security functionality.

Within organizations, individuals who will benefit include:
  • IT/IS management and staff
  • Information security officer (director, manager)
  • Risk management, privacy and compliance officers
  • Contract management department
  • Marketing department

Instructor Profile:

Kate Borten, president and founder of The Marblehead Group, Inc. brings to clients a unique combination of expertise in information security, privacy, and IT from over twenty years inside the healthcare industry. She led the first corporate-wide information security program at Massachusetts General Hospital, and she is the former Chief Information Security Officer at CareGroup, a major healthcare system based in Boston.

Ms. Borten is a nationally-recognized expert on HIPAA and health information privacy and security, and a frequent speaker on the topic. She is a contributing author to Auerbach Publications’ Information Security Management Handbook; author of HIPAA Security Made Simple (HCPro, Inc. 2003) and Guide to HIPAA Security Risk Analysis (HCPro, Inc. 2004); contributor to newsletters on HIPAA privacy and security; and three-year chair of HealthSec, the premier annual conference on information security in healthcare.

The Marblehead Group ( provides security training seminars, risk assessment, security program development, and HIPAA compliance auditing to the healthcare industry.

Follow us :
HIPAA Privacy Rule Compliance-Understanding New Rules and Responsibilities of Privacy Officer

Refund Policy

Registrants may cancel up to two working days prior to the course start date and will receive a letter of credit to be used towards a future course up to one year from date of issuance. ComplianceOnline would process/provide refund if the Live Webinar has been cancelled. The attendee could choose between the recorded version of the webinar or refund for any cancelled webinar. Refunds will not be given to participants who do not show up for the webinar. On-Demand Recordings can be requested in exchange.

Webinar may be cancelled due to lack of enrolment or unavoidable factors. Registrants will be notified 24hours in advance if a cancellation occurs. Substitutions can happen any time.

If you have any concern about the content of the webinar and not satisfied please contact us at below email or by call mentioning your feedback for resolution of the matter.

We respect feedback/opinions of our customers which enables us to improve our products and services. To contact us please email call +1-888-717-2436 (Toll Free).

Product Reviews

This product hasn't received any reviews yet. Be the first to review this product! Write review

Best Sellers
You Recently Viewed