X
GO
Privacy & Security Resources

Improving Health Center Cybersecurity: Risk Assessment, Breach Defense, Mitigation, and Response - Session 4 Cybersecurity Incident Response Planning for Health Centers

HITEQ Learning Collaborative Series

Jodie Albert 0 348

 

It's time to reconsider your strategy if you still treat cyber risk as an annual project or initiative. Having a thorough ongoing program in place means that even in the worst-case scenario, you'll be ready to demonstrate that you did what was reasonable and appropriate to protect your systems and patient data. Nothing can guarantee that a cyberattack won't become a breach. Health Centers are a domain with a high potential for data breaches. As a result, it is crucial for health center leadership to adopt breach prevention strategies across their entire organization, as opposed to relegating it to the IT department. This learning collaborative will address health center breach mitigation tactics, operationalizing cybersecurity to better mitigate risks, telehealth risk management strategies, and incident response planning from a cybersecurity perspective.

 

This series will equip health centers and their staff to:  

 

  1. Describe resources, frameworks, and methods for strategic implementation of cybersecurity infrastructure and services
  2. Describe essential cybersecurity tools and services that can help decrease the risk of a data breach
  3. Use best practices in cybersecurity when implementing modern telehealth tools and RPM initiatives
  4. Adopt cybersecurity risk management paradigms and incident response planning templates.

 

This learning collaborative will provide participating health centers a series of four structured virtual learning sessions where they will engage with facilitators, subject matter experts and their colleagues in peer-to-peer learning and discussion.

 

Improving Health Center Cybersecurity: Risk Assessment, Breach Defense, Mitigation and Response - Session 3 Mitigating Cybersecurity Risk for RPM and Telehealth Programs

HITEQ Learning Collaborative Series

Jodie Albert 0 380

 

It's time to reconsider your strategy if you still treat cyber risk as an annual project or initiative. Having a thorough ongoing program in place means that even in the worst-case scenario, you'll be ready to demonstrate that you did what was reasonable and appropriate to protect your systems and patient data. Nothing can guarantee that a cyberattack won't become a breach. Health Centers are a domain with a high potential for data breaches. As a result, it is crucial for health center leadership to adopt breach prevention strategies across their entire organization, as opposed to relegating it to the IT department. This learning collaborative will address health center breach mitigation tactics, operationalizing cybersecurity to better mitigate risks, telehealth risk management strategies, and incident response planning from a cybersecurity perspective.

 

This series will equip health centers and their staff to:  

 

  1. Describe resources, frameworks, and methods for strategic implementation of cybersecurity infrastructure and services
  2. Describe essential cybersecurity tools and services that can help decrease the risk of a data breach
  3. Use best practices in cybersecurity when implementing modern telehealth tools and RPM initiatives
  4. Adopt cybersecurity risk management paradigms and incident response planning templates.

 

This learning collaborative will provide participating health centers a series of four structured virtual learning sessions where they will engage with facilitators, subject matter experts and their colleagues in peer-to-peer learning and discussion.

 

Improving Health Center Cybersecurity: Risk Assessment, Breach Defense, Mitigation and Response - Session 2 Health Center Hacking Combat and Breach Response Strategies

HITEQ Learning Collaborative Series

Jodie Albert 0 334

 

It's time to reconsider your strategy if you still treat cyber risk as an annual project or initiative. Having a thorough ongoing program in place means that even in the worst-case scenario, you'll be ready to demonstrate that you did what was reasonable and appropriate to protect your systems and patient data. Nothing can guarantee that a cyberattack won't become a breach. Health Centers are a domain with a high potential for data breaches. As a result, it is crucial for health center leadership to adopt breach prevention strategies across their entire organization, as opposed to relegating it to the IT department. This learning collaborative will address health center breach mitigation tactics, operationalizing cybersecurity to better mitigate risks, telehealth risk management strategies, and incident response planning from a cybersecurity perspective.

 

This series will equip health centers and their staff to:  

 

  1. Describe resources, frameworks, and methods for strategic implementation of cybersecurity infrastructure and services
  2. Describe essential cybersecurity tools and services that can help decrease the risk of a data breach
  3. Use best practices in cybersecurity when implementing modern telehealth tools and RPM initiatives
  4. Adopt cybersecurity risk management paradigms and incident response planning templates.

 

This learning collaborative will provide participating health centers a series of four structured virtual learning sessions where they will engage with facilitators, subject matter experts and their colleagues in peer-to-peer learning and discussion.

 

Improving Health Center Cybersecurity: Risk Assessment, Breach Defense, Mitigation and Response - Session 1 Identifying and Assessing Cybersecurity Risks at Your Health Center

HITEQ Learning Collaborative Series

Jodie Albert 0 541

 

It's time to reconsider your strategy if you still treat cyber risk as an annual project or initiative. Having a thorough ongoing program in place means that even in the worst-case scenario, you'll be ready to demonstrate that you did what was reasonable and appropriate to protect your systems and patient data. Nothing can guarantee that a cyberattack won't become a breach. Health Centers are a domain with a high potential for data breaches. As a result, it is crucial for health center leadership to adopt breach prevention strategies across their entire organization, as opposed to relegating it to the IT department. This learning collaborative will address health center breach mitigation tactics, operationalizing cybersecurity to better mitigate risks, telehealth risk management strategies, and incident response planning from a cybersecurity perspective.

 

This series will equip health centers and their staff to:  

 

  1. Describe resources, frameworks, and methods for strategic implementation of cybersecurity infrastructure and services
  2. Describe essential cybersecurity tools and services that can help decrease the risk of a data breach
  3. Use best practices in cybersecurity when implementing modern telehealth tools and RPM initiatives
  4. Adopt cybersecurity risk management paradigms and incident response planning templates.

 

This learning collaborative will provide participating health centers a series of four structured virtual learning sessions where they will engage with facilitators, subject matter experts and their colleagues in peer-to-peer learning and discussion.

 

Cybersecurity: Ask Me Anything

HITEQ Highlights Webinar

Jodie Albert 0 1383

This session sought to motivate and educate Health Center staff and leadership on current critical cybersecurity threats, concepts, and methods for the defense of health data. A panel of cybersecurity experts addressed questions on how to best protect the health center from both internal and external network leaks, through malware such as ransomware, and through physical means on-site.

 

Maui Ransomware to Target the Healthcare and Public Health Sector

An alert from the FBI, CISA, and the Department of the Treasury

HITEQ Center 0 1411

The Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure Security Agency (CISA), and the Department of the Treasury (Treasury) are releasing this joint Cybersecurity Advisory (CSA) to provide information on Maui ransomware, which has been used by North Korean state-sponsored cyber actors since at least May 2021 to target Healthcare and Public Health (HPH) Sector organizations.

Older Adults' Protected Health Information: A Complex Ethical Case Discussion

The Center of Excellence for Protected Health Information

Caila Kilson-Kuchtic 0 1887

 In situations of medical complexity, who has access to information about an older adult's health information – including mental health and substance use history and treatment – can be a complicated issue. In this virtual training, a complex older adult health situation was presented. The legal issues related to the privacy of protected health information were reviewed by Jacqueline Seitz, JD, and Christine Khaikin, JD from the SAMHSA-funded Center of Excellence for Protected Health Information (CoE-PHI). Dr. Rebecca Allen discussed ethical issues inherent in the case, highlighting common issues in meeting the needs of older adults while assuring that the right people have the right information. A broader discussion of these issues were lead by  the E4 Center of Excellence for Behavioral Health Disparities in aging.

Objectives:

Describe when and how the federal privacy laws apply to the Protected Health Information (PHI) of Older Adults
Identify ethical considerations related to PHI, autonomy, and paternalism
Recognize how to access resources and technical assistance through the E4 Center and the CoE-PHI

Health IT and Cybersecurity Positions and Salaries

Descriptions and ranges

HITEQ Center 0 580

Find a list of job descriptions that can be used to help describe various health information and technology, as well as cybersecurity, employment options. This information was compiled in early 2022.

A variety of health information and technology positions are represented. This information is intended to assist health centers in understanding the many different domains of the profession as well as possible job descriptions that could be useful during recruitment.

Health Center Case Examples in Coding and Documenting Social Risks: Introduction

Privacy and Data Sharing Considerations | HITEQ Learning Collaborative

HITEQ Center 0 7009

Are you capturing information like immigration or refugee status, intimate partner violence, human trafficking, risk of acquiring HIV through sexual contact or substance use disorder, or other information that brings up questions about how to document or code while respecting the patient’s privacy?

This health center learning collaborative series will present health center case examples that explore the privacy and data sharing considerations of EHR documentation of sensitive patient information, such as social history and social risk, and encourage participants to discuss the implications for health centers and their patients. 

Health Center Case Examples in Coding and Documenting Social Risks

Immigration Case Example | Privacy and Data Sharing Considerations | HITEQ Learning Collaborative

HITEQ Center 0 6168

Are you capturing information like immigration or refugee status, intimate partner violence, human trafficking, risk of acquiring HIV through sexual contact or substance use disorder, or other information that brings up questions about how to document or code while respecting the patient’s privacy?

This health center learning collaborative series presented health center case examples that explore the privacy and data sharing considerations of EHR documentation of sensitive patient information, such as social history and social risk, and encourage participants to discuss the implications for health centers and their patients. 

RSS

Acknowledgements

This resource collection was cultivated and developed by the HITEQ team with valuable suggestions and contributions from HITEQ Project collaborators.

Looking for something different or have something you think could assist?

HITEQ works to provide top quality resources, but know your needs can be specific. If you are just not finding the right resource or have a highly explicit need then please use the Request a Resource button below so that we can try to better understand your requirements.

If on the other hand you know of a great resource already or have one that you have developed then please get in touch with us by clicking on the Share a Resource button below. We are always on the hunt for tools that can better server Health Centers.

Request a Resource  Share a Resource
Search
Highlighted Resources & Events
Need Assistance?
Would you like more assistance regarding Privacy & Security strategies or support in using any of the include resource sets?

  Request Support

 

The Quadruple Aim
Quadruple Aim

A Conceptual Framework

Improving the U.S. health care system requires four aims: improving the experience of care, improving the health of populations, reducing per capita costs and improving care team well-being. HITEQ Center resources seek to provide content and direction aligned with the goals of the Quadruple Aim

Learn More >

Quick Feedback Request