Cybersecurity, Top 10 Considerations in Healthcare and How to Address Them

Regular Price: $100.00

Member Price: $50.00

Your Price: $100.00

February 7, 2018
2:00 PM Eastern
Speakers: Rebecca Rakoski, Esq.; Jordan Fischer, Esq.; Matthew Streger, Esq.; Margaret Keavney, Esq.

What is the biggest issue facing the healthcare industry today? Cybersecurity. Just recently we have seen a stolen laptop with unencrypted PHI which led to a $2.5 million OCR penalty, pacemakers that needed a patch to prevent hacking and ransomware,and the UK’s National Health System get shut down after a ransomware attack. We face an unprecedented number of attacks like these every day and unlike other threats that are more sporadic, cybersecurity is a daily threat. Twenty-four hours a day, seven days a week. And while no one can predict with any certainty what lies ahead, the evidence is clear – cybersecurity is a concern that is here to stay.

With nearly 43% of all cyber attacks being focused on small business, the size of the company has little to do with the frequency of the incidents. Moreover, the ramifications of a breach can be far reaching, costly and time consuming. And while no industry is immune from attacks, which industry collects the most alluring type of data to hackers? Healthcare. Organizations that collect healthcare related data are the number one target for hackers. Why? Cyber experts universally agree that what is the most alluring to cybercriminals is large amounts of coordinated and collated data and that is precisely what is collected in healthcare related industries.

This presentation will go through the top 10 considerations for healthcare related organizations in cybersecurity and how to address those considerations. We will provide an overview of how an organization can evaluate their systems and protocols to decide whether these systems are “secure” enough and what is “secure” enough? The presentation will review “best practices” in cybersecurity and touch on information governance, breach response, and the significance of the extensive state and federal breach notification requirements. We will review the HIPAA security rule and the impact of the HITECH Act on covered entities and business associates. Finally, we will discuss the importance in incorporating cybersecurity in a way that organically fits your business needs and workflow.


Rebecca Rakoski

Rebecca Rakoski is the co-founder and managing partner at XPAN Law Group, a certified Women’s Business Enterprise (“WBE”) and Women Owned Small Business (“WOSB”). XPAN is a boutique law firm focusing exclusively on cybersecurity and data privacy. Rebecca uniquely understands how technology intersects with her client’s legal obligations and liabilities. She has extensive experience in cybersecurity standards and guidelines such as HIPAA, NY DFS, FTC, NIST, ISO, for cybersecurity and data privacy. Rebecca also focuses on domestic data privacy and cross border data transfer issues. Rebecca performs in-depth cybersecurity assessments, audits, and gap analysis. She advises and drafts internal and outward facing policies and procedures governing cybersecurity, including breach response/disaster recovery plans and counsels clients through a breach by navigating the complexities of different state and federal regulations. Rebecca also focuses on cybersecurity and data privacy due diligence in the areas of corporate mergers and acquisitions, intellectual property, and transition and succession planning. In addition to being a managing partner at XPAN, Rebecca also serves on the Board of Governors for Temple University Health Systems.


Jordan Fischer

Jordan is a co-founder and managing partner at XPAN Law Group, a certified Women’s Business Enterprise (“WBE”) and Women Owned Small Business (“WOSB”). She focuses her practice on international data privacy and cybersecurity and cross-border data management, with a special emphasis in European Union data privacy regulations and the forthcoming General Data Protection Regulation. Jordan has extensive experience in the intersection of law and technology. At XPAN, Jordan regularly evaluates and assesses legal and business opportunities and risk to provide public and private sector clients with critical data privacy and cybersecurity assessments and strategy. With a global perspective, Jordan works with clients to create cost-effective and business oriented approaches to cybersecurity and data privacy compliance. Jordan also works on and manages large-scale electronic discovery projects to address cross-border discovery issues. In addition to being a principal member of XPAN Law Group, Jordan is an adjunct law professor at the Thomas R. Kline School of Law, where she teaches a variety of legal courses, including European Union law.


Matthew Streger

Matthew R. Streger is a paramedic and attorney with more than thirty years of EMS experience. Matthew is a Partner at the law firm of Keavney & Streger in New Jersey and focuses his practice on the needs of EMS agencies and providers. Matthew worked in EMS systems in New Jersey, New York, South Carolina and Ohio. He has served as the Executive Director of Mobile Health Services (EMS) at Robert Wood Johnson University Hospital in New Jersey, the Deputy Commissioner of EMS in Cleveland, and the Director of Disaster Preparedness at St. Vincent Charity Hospital in Cleveland. He currently sits on the Panel of Commissioners for CAAS and the Editorial Advisory Board of EMS World Magazine. Matthew completed his Paramedic Training at the UMDNJ School of Health Related Professions in Newark, New Jersey.  He holds a Bachelor of Arts in Public Administration from the City University of New York, John Jay College of Criminal Justice, and a Master of Public Administration Degree from Clemson University. Matthew received his Juris Doctor from Seton Hall University School of Law and is admitted to practice in the State of New Jersey.

Margaret Keavney


Event Details

Date: February 07, 2018

Start time: 14:00 p.m.

End time: 15:00 p.m.