An accessible view of what risk analysis really means from a fundamental perspective.
The healthcare industry has been long aware of the requirements to perform comprehensive Risk Analysis as part of HIPAA Compliance. But what does this mean? For many people, Risk Analysis is some arcane process done in IT Departments. Part of the problem is that there are different frameworks and even different definitions that are used in the realm of Risk.
This presentation will focus on how risk analysis really works, what it does and does not do, and how we each use the principles of analyzing risk in our daily lives.
Understanding Risk in industry – The components that must be present to say that ”something” is actually a risk.
- The difference between risk assessment and risk analysis (2 words that are often used interchangeably, but can be very different).
- Understanding how much risk is too much risk.
- What happens once risk is identified and rated.
- Who decides what’s acceptable risk and what must be mitigated.
- Some dos and don’ts of considering approaches to risk management and risk analysis, regardless of framework and environment.
- The value of understand Risk Analysis beyond the IT Department.
April 16, 2020
1.0 – Health Law and Compliance
Wes Morris, IdHIMA Advocacy Director
As Managing Principal Consultant for Clearwater Compliance, Wes manages and guides a team of over 30 consultants. Additionally, he provides consultation, support, program development and Privacy and Security assessments to covered entities and business associates across the healthcare spectrum.
Wes served in the U.S. Air Force for 22 years as a Mental Health Specialist and Substance Abuse Counselor before transitioning into HIPAA Privacy and Security compliance 17 years ago, holding positions as Privacy and Security Officer at hospital and health system level, consultant team lead to the Air Force Medical Service, and subject matter expert to the Department of Veteran’s Affairs records project for veterans and service members.He provides support and advocacy to the industry through his roles with AHIMA as a member of the Exam Development Committee for the Certified in Healthcare Privacy and Security (CHPS) credential, 2019 co-chair of the AHIMA Privacy and Security Practice Co uncil, 2020 member of the AHIMA Health Information Technologies and Innovations Practice Council, and the IdHIMA Board of Directors (Legal and Legislative Advocacy Director).