Privacy Risk Analysis

Duration: 60 Minutes
Instructor: Drew Williamsen
Webinar Id: 800455


One Attendee


Many organizations focus their HIPAA Risk Analysis on the Security side, and rightfully so. In this day and age, security should be a high priority, but often Privacy gets left out. In this webinar, you will be taught how to conduct your Privacy Risk Analysis so by the time you are done, your Privacy Risk Analysis can stand up to an audit. This will include all the steps through the process to ensure you have a conducted a thorough analysis. The National Institute of Standards and Technology (NIST) has released guidance on conducting a Privacy Risk Analysis. We will go through the guidance and ensure you have the tools to start your own Privacy Risk Analysis.

Why should you Attend: Do you know where all of your paper Protected Health Information (PHI) is stored? Do you really know or were you told? Going through, in depth the process necessary to identify requirements to keep and maintain the privacy of patient information is essential. Whether you are a large organization or a small organization, everyone who has paper records, obtains consents, releases information to appropriate individuals needs to know what is required to stay in the good graces of the Government, and more importantly, the patient.

Areas Covered in the Session:

  • Difference between a Risk Analysis and a Risk Assessment.
  • Identify your Scope.
  • Develop Resources to conduct the Privacy Risk Analysis.
  • Document findings
  • Prepare a final report
  • What now?
  • Training
  • Follow-up, and create monitoring/auditing plan

Who Will Benefit:
  • Privacy Analyst
  • Privacy Officer
  • Compliance Analyst
  • Compliance Officer
  • Information Security Officer
  • Chief Compliance Officer

Speaker Profile
Drew Williamsen serves as the Privacy Officer & Compliance Investigator for University Health, a non-profit organization, with its primary location in Shreveport, Louisiana. University Health is the hospital and clinical partner to LSU Health Shreveport medical school. In this role, Mr. Williamsen oversees the privacy program at two hospitals and numerous associated clinics in Northern Louisiana. Working in the Compliance Department, Mr. Williamsen, along with Privacy, is also involved in in activities related to Fraud & Abuse, Stark, False Claims, Anti-Kickback, EMTALA, Provider Based Billing Rules, Research, and everything else related to compliance.

Mr. Williamsen has over 10 years of experience in various roles in the healthcare industry, from billing and collections, software, medical informatics and compliance. Most of which has been through working for Academic Medical Centers.

Mr. Williamsen has a Master’s of Healthcare Administration from Oklahoma State University, a Master’s Certificate of Healthcare Corporate Compliance from The George Washington University, and a Bachelor’s Degree in Mass Communication from The University of Utah. He is also Certified in Healthcare Compliance from the Healthcare Corporate Compliance Association (HCCA).

You Recently Viewed