HIPAA Compliance and Increased Cyber Threats: Proposed HIPAA Security Rule Changes, Agency Guidance, Enforcement Action
A live 90-minute CLE video webinar with interactive Q&A
This CLE webinar will examine the challenges in HIPAA Security Rule compliance in an age of ever-increasing ransomware and cyberattacks. The panel will review the HIPAA Security Rule requirements and proposed amendments to the Rule, additional HHS agency guidance, and notable recent OCR settlements. The panel will offer best practices for cybersecurity compliance while mitigating the risk of HIPAA violations and enforcement action.
Outline
- Introduction
- Ransomware and other cybersecurity threats to patient data privacy
- Proposed HIPAA Security Rule changes
- HHS proposed revisions to the HIPAA Security Rule
- Additional agency guidance for HIPAA cybersecurity compliance
- HHS' and NIST's joint Cybersecurity Resource Guide
- NIST's Cybersecurity Framework
- Lessons learned from recent settlements
- Best practices for managing cybersecurity risks and mitigating risk of enforcement action
Benefits
The panel will review these and other important considerations:
- What challenges face healthcare counsel and their clients in managing cyber threats and maintaining data privacy?
- How may the proposed HIPAA Security Rule revisions impact the development and implementation of cybersecurity compliance programs?
- In addition to HIPAA requirements, what additional agency guidance should counsel and their clients be aware of when developing compliance programs?
- What are best practices for cybersecurity compliance and mitigating the risk of enforcement action by OCR and others in the event of a data breach?
Faculty

Jennifer Pike
Counsel
Alston & Bird
Ms. Pike serves a broad range of clients in the industry, including institutional providers, medical practices, health... | Read More
Ms. Pike serves a broad range of clients in the industry, including institutional providers, medical practices, health systems, and health care technology vendors. Her practice is focused on providing comprehensive counsel on a full range of HIPAA regulatory and compliance matters, including analysis of applicability of HIPAA requirements, creation and implementation of robust HIPAA programs designed to reduce compliance-related incidents, successful navigation of breach response and government investigations, negotiation of business associate agreements, and analysis of complex data use questions. Ms. Pike also regularly advises clients on IT-related matters and technology transactions. Her experience in these areas uniquely positions her to counsel health care entities on their adoption and use of cutting-edge technologies, as well as guide clients in developing and commercializing digital health technologies. Ms. Pike’s clients also rely on her experience advising on complex health care regulatory, compliance, and enforcement matters, including Stark Law, state and federal anti-kickback statutes and beneficiary inducement prohibitions, as well as corporate practice of medicine and compliance with Medicare and Medicaid rules and regulations.
Close
Beth Neal Pitman
Partner
Holland & Knight
Ms. Pitman advises healthcare systems and providers and healthcare information technology (IT) businesses when... | Read More
Ms. Pitman advises healthcare systems and providers and healthcare information technology (IT) businesses when navigating healthcare privacy and cybersecurity regulations, other healthcare regulations, and government reimbursement program matters. Her experience includes the development and ongoing management of comprehensive HIPAA compliance programs, including drafting and negotiating business associate agreements, policies and training. When a data breach or other privacy regulatory violation occurs, Ms. Pitman guides her clients through the process for responding to the breach and any subsequent federal or state government investigations. She also provides advice to clients related to the frequent changes associated with the many federal healthcare payment programs.
Close