Quick Feedback Request
Highlighted Resources & Events
Need Assistance?
Would you like more assistance regarding Patient Portal strategies or support in using any of the included resource sets?

  Request Support

 

Upcoming Events
The Quadruple Aim
Quadruple Aim

A Conceptual Framework

Improving the U.S. health care system requires four aims: improving the experience of care, improving the health of populations, reducing per capita costs and improving care team well-being. HITEQ Center resources seek to provide content and direction aligned with the goals of the Quadruple Aim

Learn More

Resource Overview

Patient portals, sometimes also referred to as personal health record systems (PHR) are web-based portals commonly attached to electronic health record systems (EHRs). These patient-centered portals provide patients with the ability to login and review health information related to their care. Common patient portal services include ways in which to schedule appointments, send messages to their care providers, review test results and refill prescriptions.

Outside of the benefits to the patient, implementation of patient portals had come to the attention of healthcare providers due to the inclusion of Meaningful Use of objectives centered on the use of patient portals and electronic engagement with patients.  Stage 3 requirements are still being explored and the impact it will have on Health Centers is unknown. Therefore, it is a challenge for small practices and Health Centers to determine how to best derive value from Patient Portals and effectively implement them into their workflow.

The tools and articles posted below are meant to provide examples, templates and strategies that can assist Health Centers in understanding how patient portals can better engage their patients in self-management of their care, and after an initial investment in time and money can decrease the burden on their clinical and administrative staff.

Patient Portal Resources

Event date: 12/5/2023 12:00 PM - 1:00 PM Export event
Improving Health Center Cybersecurity: Risk Assessment, Breach Defense, Mitigation and Response - Session 4
Nye Day
/ Categories: Privacy and Security, Privacy & Security Best Practices, Security Risk Analysis, Breach Mitigation & Response, Webinars, Archived

Improving Health Center Cybersecurity: Risk Assessment, Breach Defense, Mitigation and Response - Session 4

Virtual Learning Collaborative

It's time to reconsider your strategy if you still treat cyber risk as an annual project or initiative. Having a thorough ongoing program in place means that even in the worst-case scenario, you'll be ready to demonstrate that you did what was reasonable and appropriate to protect your systems and patient data. Nothing can guarantee that a cyberattack won't become a breach. Health Centers are a domain with a high potential for data breaches, and the risk continues to grow as health centers use new tools and the introduction of artificial intelligence (AI). As a result, it is crucial for health center leadership to adopt breach prevention strategies across their entire organization, as opposed to relegating it to the IT department. 

To support health centers in their cybersecurity strategy and implementation, the HITEQ Center offered a free learning collaborative -- Improving Health Center Cybersecurity: Risk Assessment, Breach Defense, Mitigation, and Response. This learning collaborative involved four structured virtual learning sessions. During the series participants engaged with subject matter experts and their colleagues in peer-to-peer learning and discussion. Topics included: health center breach mitigation tactics, operationalizing cybersecurity to better mitigate risks, cybersecurity implications of generative artificial intelligence in health centers, and incident response planning from a cybersecurity perspective.

 

Session 4: Cybersecurity Incident Response Planning for Health Centers

According to IBM's annual Cost of Data Breach Report, the average cost of a data breach for a healthcare organization is more than $10 million. Having a well-documented cybersecurity incident response plan is essential and required for all Health Centers due to the sensitivity of the patient data they are responsible for maintaining. The cost and damage caused by a data breach is often exorbitant, but a strategic incident plan can help to significantly mitigate such effects, and potentially, prevent them from occurring in the first place. This session will provide an overview of incident response planning requirements for health centers and review established workflows for common incident response scenarios such as ransomware attacks.

 

Print
4243
Tags: cybersecuritycybersecurity risksbreach defensemitigation and responseincident response planning

Documents to download

Resource Links

Related Resources

Leave a comment

Add comment

Acknowledgements

This resource collection was cultivated and developed by the HITEQ team with valuable suggestions and contributions from HITEQ Project collaborators.