Mitchell Hamline’s Professional Legal Education Programs and the Health Law Institute will co-host a free CLE titled “Navigating Healthcare Cybersecurity and Privacy Law” on Thursday, June 29. The event is sponsored by the Dorsey & Whitney Foundation.
The CLE is 2-6 pm in the Mitchell Hamline Auditorium. Remote participation will be available via live webcast. 3.5 CLE credits have been applied for.
A one-hour reception follows the CLE.
The event’s expert panelists will explore important trends and strategies to successfully navigate healthcare cybersecurity and privacy for your organization.
Charlotte Tschider ’15 (HUSL), an adjunct professor in Mitchell Hamline’s Cybersecurity and Privacy Law Certificate program, will moderate one of the panels. Tschider says the world of cybersecurity and healthcare is becoming more important—as well as more complicated.
“Healthcare organizations are increasingly collecting personal information to improve patient outcomes and personalize treatment,” she says. “At the same time, healthcare organizations must adapt to rapidly evolving international regulations and active administrative enforcement.”
2—2:10 pm Introduction to program and Professional Legal Education at Mitchell Hamline
2:10—2:40 pm Keynote: Information Governance for the Healthcare Industry: A Combined Approach
Jacki Monson, VP, Chief Privacy and Information Security Officer, Sutter Health
Looking at information security and privacy as a hand and hand patient safety issue is critical to solving the cybersecurity crisis currently facing healthcare. Monson will discuss key recommendations from the U.S. Department of Health and Human Services Healthcare Cybersecurity Task Force, and discuss the call to action for both the private and public sectors to begin enhancing cybersecurity in healthcare.
2:40—4:15 pm Panel 1: Building and Maturing Cybersecurity and Privacy Programs
Healthcare organizations of all sizes are actively building or maturing information governance, cybersecurity, and privacy programs to manage not only legal but also reputational, financial, and organizational risk. For organizations to successfully manage risk, they must plan for the healthcare industry threat landscape; execute risk mitigation strategies, such as administrative processes and procedures, technology investments, or risk-shifting options; build program governance, including collaboration across organizational functions; and improve incident response preparation and organizational resiliency.
Moderator: Bruce Lach, President, SUCCESS Computer Consulting Inc.
Panelists: Elimu Kajunju, Senior Director/Senior Counsel, Privacy, McKesson Corporation; Cory Fitzpatrick, Privacy Officer, Children’s Hospitals and Clinics; Morgan Schacht, Compliance/Privacy Officer, Mayo Clinic; Eran Kahana, Senior Fellow Stanford University, Counsel Maslon LLP; Joe Cuffel, Director Healthcare Privacy, Concord USA; Jamie Wolbeck, Vice President of Technical Operations, SUCCESS Computer Consulting Inc.
4:15—4:30 pm Break
4:30—6 pm Panel 2: Complying with International Cybersecurity and Privacy Regulatory Requirements
Regulatory requirements, both in law and in enforcement, are rapidly changing how healthcare organizations collect, process, transfer, store, and protect personal information. The General Data Protection Regulation (GDPR) in the European Union will be active in May 2018, while the United States Department of Health and Human Services’ Office for Civil Rights has increased audit frequency and fines for non-compliant organizations. Healthcare organizations must anticipate future legal risks posed by new international regulation and enforcement to plan for an appropriate compliance strategy.
Moderator: Charlotte Tschider, Affiliated Professor, Mitchell Hamline School of Law
Panelists: Robert E. Cattanach, Partner, Dorsey & Whitney LLP; Mark Lanterman, Founder, Computer Forensic Services; Pat Midden, Owner, Bastion Consulting Inc.; Jesse Berg, Attorney, Gray Plant Mooty
6—7 pm Reception