Roundtable Discussion of HIPAA Security Rule Implementation and Compliance StrategiesThe Tenth National HIPAA SummitApril 7, 2005

The Next Martha?Healthcare IT News: March 2005

Session ObjectivesIntroductionsBrief Presentations by Roundtable MembersQuestions /Answers /Discussion

Session Objectives During this session we will explore and discuss the following:Where should the healthcare industry be at this point in time in relation to the HIPAA Security Rule and healthcare security, in general?Where is it really?What were/are some of the barriers to compliance?How do think the industry managed the addressable implementation specifications of the Rule?How do you think enforcement will be handled?

Session Objectives During this session we will explore and discuss the following:What technology exists on the horizon that will better enable healthcare security?Whats in the future for HIPAA Security regulatory updates/refinements?What impact will EHR, HIT, NHIN, etc. and other healthcare initiatives have on healthcare security?What impact/serendipity effect will recent large-scale incidents involving sensitive data and the increasing paranoia about identity theft by both the public and the Congress have on healthcare security?Etc., etc.

Roundtable MembersJohn C. Parmigiani (Moderator)Sr. VP for Consulting Services, QuickCompliance, Inc. and President, John C. Parmigiani & Associates, LLCjparmigiani@quickcompliance.net/jcparmigiani@comcast.net: 410-750-2497Ronald S. Ross, Ph.D.Computer Science Division, Information Technology Laboratory, National Institute of Standards and Technologyron.ross@nist.gov: 301-975-5390Ali Pabrai, CISSP, CHSSChief Executive, HIPAA Academypabrai@HIPAAacademy.net: 949-260-2030Gary G. Christoph, Ph.D., CISM, CHSSenior VP, Government and Healthcare, Seclarity, Inc.gchristoph@seclarity.com: 410-884-1313Kevin C. Day CTO, Relational Security Corporation kday@relsec.com: 201-951-6879

And now for our first roundtable members presentation:

Ron Ross

22