Conference Focuses on Security Rule

The Department of Health and Human Services' Office for Civil Rights and the National Institute of Standards and Technology will host a two-day conference to discuss the health information technology security landscape, particularly the HIPAA security rule.

The conference targets CIOs and information security officers of covered entities and business associates, others responsible for the security of electronic health information, and consultants and attorneys.

The conference, May 11-12 in Washington, will cover practical strategies, tips and techniques for implementing requirements of the HIPAA security rule. OCR has enforcement jurisdiction over the security, privacy and breach notification rules.

Sessions will cover updates on OCR's administration and enforcement of the security rule; risk assessments and contingency planning; logging and auditing; requirements of the breach notification rule; and security considerations for mobile/wireless technologies and new media.

For more information and to register, visit nist.gov/public_affairs/confpage/100511b.htm.

--Joseph Goedert