Operations and Implementation

Oral Presentation

(OI10-02) Privacy and Security - At the Doorway of Value-based Care

Tuesday, April 25
11:15 AM - 11:45 AM
Location: Tangerine Ballroom

Medicare Access and CHIP Reauthorization Act of 2015 (MACRA) is rolling out. The law impacts how providers are paid under Medicare. Will it push providers to use telehealth technology to achieve value-based care? Will it give Telemedicine providers a better view of the patient with its emphasis on interoperability, information exchange and security?

This presentation clarifies how MACRA affects the telemedicine provider from the perspective of privacy and security including HIPAA and HITECH. CMS will spell out the details and is expected to "include telehealth services in the definition of patient-facing encounters." This is good news for Telemedicine because Medicare intends to evaluate technology based on its usefulness to clinicians and patients.

Cybersecurity technologies and regulations are often not perceived as very useful and sometimes just "get in the way." As a result, Telemedicine providers might find a workaround to a security control that slows down work-flow. Healthcare professionals are not hackers or slackers - they just want to get their work done. Walk into a clinic or practice and you'll find a deluge of obstacles thrown at them on a daily basis. A healthcare professional's first priority is to take care of patients.

For a long time, security controls often did not integrate well with clinical workflow or usability. Security experts are in the business of keeping the bad guys out. They also are pretty good at uncovering who, what, when and where a security incident occurs. The reality has been that system and security engineers may not always have always done the best job communicating with Telemedicine professionals.

We will discuss how Telemedicine and Cybersecurity can work both better and smarter. We challenge the emphasis on record-keeping for compliance purposes and promote Cybersecurity in terms of practical value for both Telemedicine professionals and their patients. Cybersecurity must integrate well with Telemedicine's day-to-day processes and training. We will explore emerging Cybersecurity technology that Telemedicine can use to be more efficient and integrate better with work-flow. Privacy and security information should be readily accessible in an intuitive manner. Training and security questions and answers should be relevant, frequent and short so that it becomes part of Telemedicine's culture. Built-in shortcuts and search engines can help answer privacy and security questions quickly and keep documentation work to a minimum. We will consider how "cloud-based" Cybersecurity compares to traditional stand-alone software - its benefits and disadvantages.

As healthcare reaches beyond EMR record keeping, the focus shifts to preparing for Telemedicine's virtual visits. Privacy and security methodology must support the Telemedicine provider's launch of its patient awareness campaign. We will discuss how to leverage Security Risk Assessments (SRA), Incident Responses, security education and security controls for continuous quality improvement of patient experience and outcomes.

Value-based care represents a distinct contrast to the fee-for-service model. MACRA's message for Telemedicine and Cybersecurity is to integrate well so that everyone - including patients - can make better decisions.

Learning Objectives:

William J. Mee

Co-founder and President
secureHIM Inc.

I am the co-founder & President of secureHIM Inc. that is owned and operated by Certified Telehealth Coordinators with certifications in Information Security. I have over 25 years of experience in training, information security, systems design and integration. I am a graduate of Rutgers University (BA) and received my MS in Information Systems at Virginia Commonwealth University in 2008.

Over the years, I have responded to many Cybersecurity Incidents that often begin with a simple mistake in process or procedure. I have given a lot of thought on how to make Cybersecurity part of your culture rather than a compliance audit issue. I have worked with a team of international Training Specialists to develop a methodology along with tools that integrate Cybersecurity best practices as part of your day-to-day Telehealth operations.

secureHIM manages Telehealth implementation projects or works with existing Telehealth practices to identify and manage high risk data assets and improve your level of compliance and help provide the following:

• Build patient trust and confidence
• Educate and engage patients, staff, business associates and providers
• Become a trusted advisor
• Leverage vendor and business associate relationships
• Execute a proven implementation strategy
• Fuel Telehealth marketing efforts

secureHIM helps Telehealth providers and stff develop as experts that build community influence and engage patients. We help you reach your staff and patients on a human level and make an authentic connection.

Presentation(s):

Send Email for William Mee


Assets

(OI10-02) Privacy and Security - At the Doorway of Value-based Care



Attendees who have favorited this

Send Email for Privacy and Security - At the Doorway of Value-based Care