HIPAA and the Recent Cybersecurity Act HHS Guidance


CLE credits earned: 2 GENERAL (or 2 LAW & LEGAL for WA state)

Participants in the United States health care system, whether patient, provider business associate or subcontractor, either knows or should know about the Health Insurance Portability and Accountability Act of 1996, Pub. L. 104-191 (Aug. 21, 1996). Another law, which is also relevant to healthcare industry participants is the Cybersecurity Act of 2015, Pub. L. 114-113 (Dec. 18, 2015) (“CSA”). The Health Industry Cybersecurity Practices: Managing Threats and Protecting Patients (“HICP”) reflects the insights from both the private and the government stakeholders through the Healthcare and Public Health Sector Critical Infrastructure Security and Resilience Public-Private Partnership.

Attorneys can expect to learn the legislative history of HIPAA, the HITECH Act and the Cybersecurity Act; the Security Rule’s technical, administrative and physical safeguard requirements; and how the HICP guidance benefits organizations striving towards HIPAA compliance.

This course is co-sponsored with myLawCLE.

Key topics to be discussed:

•   Cybersecurity Act of 2015
•   Health Industry Cybersecurity Practices: Managing Threats and Protecting Patients (“HICP”)
•   Prevention, detection and correction of a cybersecurity event as it relates to the Security Rule

Date / Time: December 16, 2019

•   2:00 pm – 4:00 pm Eastern
•   1:00 pm – 3:00 pm Central
•   12:00 pm – 2:00 pm Mountain
•   11:00 pm – 1:00 pm Pacific

Choose a format:

•   Live Video Broadcast/Re-Broadcast: Watch Program “live” in real-time, must sign-in and watch program on date and time set above. May ask questions during presentation via chat box. Qualifies for “live” CLE credit.
•   On-Demand Video: Access CLE 24/7 via on-demand library and watch program anytime. Qualifies for self-study CLE credit. On-demand versions are made available 7 business days after the original recording date and are view-able for up to one year.

Select your state to see if this class is approved for CLE credit.

Choose the format you want.


Original Broadcast Date: April 2, 2019

Rachel V. Rose, JD, MBA is a Principal with Rachel V. Rose – Attorney at Law, P.L.L.C. (Houston, TX).

Ms. Rose has a unique background, having worked in many different facets of healthcare, securities, international law and business throughout her career including: work in acute care hospitals including the operating room and dietary departments; consultative work as a top performing representative for the pharmaceutical and medical device industry; work for the Chairman of the Reform and Oversight Committee on Capitol Hill; intern at the Department of Health and Human Services; and compiling policy papers at the Royal College of Nursing in London. She has worked on Wall Street and at one of the Big Four consulting firms.

Prior to opening her law firm, she was Director of Business Development and Assistant General Counsel for a healthcare advisory company. She advises, publishes and presents on a variety of healthcare and securities topics including: Dodd-Frank, the False Claims Act, the Foreign Corrupt Practices Act, physician reimbursement, ICD-10, access to care, anti-kickback and Stark laws, international comparative healthcare laws, and the HIPAA/the HITECH Act. Her practice focuses on a variety of cybersecurity, health care, corporate and securities law issues related to industry compliance, transactional work and Dodd-Frank/False Claims Act whistleblower claims, which remain under seal.

Ms. Rose holds an MBA with minors in healthcare and entrepreneurship from Vanderbilt University, and a law degree from Stetson University College of Law, where she graduated with various honors, including the National Scribes Award and The William F. Blews Pro Bono Service Award. She has been named as one of the 2017 Top Lawyers by Houstonia Magazine for healthcare and The National Women Trial Lawyers – Top 25. Ms. Rose also serves on the Executive Board of the Health Law & Policy Institute at the University of Houston Law Center. Ms. Rose is licensed in Texas.

Currently, she is on the Executive Committee of the Federal Bar Association’s Qui Tam Section and a member of the Government Relations Committee, the co-editor of the American Health Lawyers Association’s Enterprise Risk Management Handbook for Healthcare Entities (2nd Edition) and Vice-chair of the Distance Learning Committee for the Health Law Section of the American Bar Association, as well as a co-author of the book The ABCs of ACOs and What Are International Business Considerations? Ms. Rose is an Affiliated Member with the Baylor College of Medicine’s Center for Medical Ethics and Health Policy, where she teaches bioethics.

Ms. Rose is also involved in a variety of not-for-profit endeavors. She performs pro-bono legal work for veterans through the Houston Bar Association, has served Vanderbilt University in a variety of capacities including past-president of the Houston Alumni Chapter and current Alumni Council Member, and UNICEF SW Regional Board Member. Ms. Rose has also served on the Auction Committee for the March of Dimes Chef’s Gala 2015 and in a variety of roles with the Junior League of Houston for the past several years.

Accreditation Policy
myLawCLE seeks accreditation for all programs in all states. (Accreditation for paralegals sought thru NALA and NFPA paralegal associations.) Each attending attorney/paralegal will receive a certificate of completion following the close of the CLE program as proof of attendance. In required states, myLawCLE records attorney/paralegals attendance, in all other states attorney/paralegal is provided with the approved CLE certificate to submit to their state bar or governing association.

    Automatic MCLE Approvals

All myLawCLE CLE programs are accredited automatically either directly or via reciprocity in the following states: AK, AR, CA, CT, FL, HI, ME, MO, MT, ND, NH, NM, NJ, NY, WV, and VT. (AZ does not approve CLE programs, but accepts our certificates for CLE credit.)

    Live Video Broadcasts

Live video broadcasts are new live CLE programs being streamed and recorded for the first time. All of these programs qualify for “Live” CLE credit in all states except NV, OH, MS, IN, UT, PA, GA, SC, and LA —these states require in-person attendance to qualify for “Live” CLE credit.

    “Live” Re-Broadcasts

“Live” Re-broadcasts are replays of previous recorded CLE programs, set on a specific date and time and where the original presenting speakers calls in live at the end of the event to answer questions. This “live” element allows for “live” Re-broadcast CLEs to qualify for “Live” CLE credits in most states. [The following states DO NOT allow for “live” CLE credits on re-broadcast CLEs: NV, OH, MS, IN, UT, PA, GA, SC, and LA]

Many states allow for credit to be granted on a 1:1 reciprocal basis for courses approved in another mandatory CLE jurisdiction state. This is known as a reciprocity provision and includes the following states: AK, AR, HI, CT, FL, ME, MO, MT, ND, NH, NM, VT, NJ, NY, and WV. myLawCLE does not seek direct accreditation of live webinars or teleconferences in these states.

Section I. Legislative history of HIPAA, the HITECH Act and related Rules

Section II. Explanation of the Cybersecurity Act of 2015 and HICP

Section III. HICP’s relationship to the technical, administrative and physical requirements of HIPAA

Section IV. HICP’s role in a Security Rule Risk Analyses and compliance

Section V. Recent HIPAA breaches and cybersecurity events

Section VI. Risk Mitigation Strategies