This session will be a panel discussion of the overlap of privacy and security. The panel will discuss why a collaborative working relationship is critical to the success of both privacy and security and how the two can work effectively together.
3. CTEK SUMMIT
2020
3
Fred Bishop, Information Security Officer
UC Health
• 25 years of diverse IT experience including application / database development, server and
networking infrastructure, and information security.
• IT Director for LCOH until late 2014 when he joined UC Health as their Information Security Officer.
• Scored second highest in the world on his CISM exam.
• Re-vitalized the Privacy and Security partnership with shared responsibility for the auditing function of
UC Health’s EHR.
4. CTEK SUMMIT
2020
4
David Finn, EVP, Strategic Innovation
CynergisTek
• Two degrees in Theatre
• Recovering Healthcare CIO, Privacy Officer, Security Officer, Auditor
• Certifications include CISA, CISM, CRISC, CDPSE
• 35+ years focused on creating and maintaining trust in and value from information and
information technology s y s t e m s .
5. CTEK SUMMIT
2020
5
Andrew Mahler, Senior Manager, Privacy Services
CynergisTek
• Leads CynergisTek’s privacy, compliance, and research managed/professional/consulting services
• Former Investigator with the U.S. Department of Health & Human Services, Office for Civil Rights (OCR)
• Served in Chief Privacy and Research Compliance roles for universities, academic medical centers, and
health systems
• Health care law course developer, instructor, and guest lecturer
• Licensed to practice law in Georgia and Arizona and holds CIPP/US, CHPC, CHC, CHRC certifications
6. CTEK SUMMIT
2020
6
Marti Arvin, Executive Advisor
CynergisTek
• 31+ years of experience in healthcare, 22+ in healthcare compliance focused on
privacy, information security, research and general healthcare compliance.
• Marti’s expertise focuses on HIPAA compliance, breach notification, and expert witness
services.
• Marti’s previous roles have been as a CCO/CPO for large healthcare delivery systems.
• She is an attorney, and holds the CHC-F, CCEP-F, CHRC and CHPC.
8. CTEK SUMMIT
2020
Polling question number 1
• Where does Chief Privacy Officer report in your
organization?
a. CEO
b. Board or a Board committee
c. Compliance
d. CIO/CISO
e. Legal
f. Other
8
9. CTEK SUMMIT
2020
Polling question number 2
• Where does the Chief Information Security Officer report
in your organization?
a. CEO
b. Board or a Board committee
c. Compliance
d. CIO
e. Legal
f. Other
9
10. CTEK SUMMIT
2020
Polling question number 3
• Does it matter whether the CPO and CISO report to the
same or a different person?
a. Yes
b. No
c. Maybe
d. Not sure
10
11. CTEK SUMMIT
2020
Polling question number 4
• Do you think it is important for the CPO and CISO to work
together?
a. Yes
b. No
c. Maybe
d. Not sure
11
15. CTEK SUMMIT
2020
Key Takeaways
• Privacy and security are integral to each other
• Lack of coordination or poor communication between
privacy and security could increase cost and increase risk
• Collaborating on strategic planning can minimize
duplication of effort and improve utilization of resources
15
16. CTEK SUMMIT
2020
THANK YOU / Q&A
If we did not address your question(s), or if
you would like to continue the discussion
on the benefits of a collaborative privacy &
security convergence please email Marti
Arvin directly:
Marti.Arvin@CynergisTek.com
16