©2002 First Consulting Group F I R S T C O N S U L T I N G G R O U P Security HIPAA Tool Training.

Slides:

Advertisements

Similar presentations

ANNEX B Mini Tutorial for Using the Department of Human Services’ (DHS) Electronic Budget Form.

Advertisements

Spreadsheet Software lesson 14. This lesson includes the following sections: Spreadsheet Programs and Their Uses The Spreadsheet's Interface Entering.

1 H2 Cost Driver Map and Analysi s Table of Contents Cost Driver Map and Analysis 1. Context 2. Cost Driver Map 3. Cost Driver Analysis Appendix A - Replica.

HIPAA Security Rule Overview and Compliance Program Presented by: Lennox Ramkissoon, CISSP The People’s Hospital HIPAA Security Manager The Hospital June.

D EEMED M EASURE R EVIEW P ROJECT Final Report December 7, 2010 Regional Technical Forum Presented by: Michael Baker.

ACOT Intro/Copyright Succeeding in Business with Microsoft Excel 2010: Chapter1.

ORGANIZATION. 2 Purchasing & Inventory Assessment Occurrence Management Information Management Process Improvement Customer Service Facilities & Safety.

Faculty & Staff Compensation Programs Board of Regents Meeting

State Homeland Security Assessment and Strategy Program State Process and SHSS.

UNC Charlotte Purchasing Card Training for Auditor Role Annette Heller.

Management Information Systems

Job Analysis and Rewards

Quality evaluation and improvement for Internal Audit

project management office(PMO)

On Site Review Process Office of Field Services.

Chapter 17 Acquiring and Implementing Accounting Information Systems

Project Name Steering Committee Meeting Project Manager: Project Manager Name Program Manager: Program Manager Name Project Sponsor: Project Sponsor Name.

Lecture Roger Sutton CO357 Computing for Business and Accounting 7: Spreadsheet Documentation 1.

AICT5 – eProject Project Planning for ICT. Process Centre receives Scenario Group Work Scenario on website in October Assessment Window Individual Work.

Organization Mission Organizations That Use Evaluative Thinking Will Develop mission statements specific enough to provide a basis for goals and.

Business Analysis: A Business Unit Perspective International Institute of Business Analysis January 18, 2012.

1 Our Expertise and Commitment – Driving your Success An Introduction to Transformation Offering November 18, 2013 Offices in Boston, New York and Northern.

DE&T (QuickVic) Reporting Software Overview Term

Financial Statement Modeling & Spreadsheet Engineering “Training in spreadsheet modeling improves both the efficiency and effectiveness with which analysts.

Introduction to Spreadsheet Software. Spreadsheets and Their Uses Examples of Charts Spreadsheet Basics Spreadsheet Map Types of Spreadsheet Data Navigating.

E-Surveys/Tools April 19, About E-Surveys 2.

New Procedures for Completing Improvement Plans By Tracy L. Chenoweth & Dr. Sherri Nash.

Compensation Project Faculty & Staff Compensation Programs Board of Regents Finance Committee Meeting Project Overview

Quality Assurance. Identified Benefits that the Core Skills Programme is expected to Deliver 1.Increased efficiency in the delivery of Core Skills Training.

Certification and Accreditation CS Phase-1: Definition Atif Sultanuddin Raja Chawat Raja Chawat.

Deloitte Consulting LLP Commonwealth of Massachusetts IT Consolidation Program IT Finance and Budgeting Sub-committee Discussion Document February 24,

Chapter 10 Information Systems Analysis and Design

1 ACLA: An Overview and 2010 Proposed Budget. Topics to be Covered Overview of ACLA Program Services Outreach Services 2009 Focus 2010 Agenda and Budget.

With Microsoft Excel 2007 Comprehensive 1e© 2008 Pearson Prentice Hall1 PowerPoint Presentation to Accompany GO! with Microsoft ® Excel 2007 Comprehensive.

© BMGI. You may freely modify, distribute and/or reproduce this only if BMGI's logo is not altered or removed. Finance Process 22 May 2006.

The Development of BPR Pertemuan 6 Matakuliah: M0734-Business Process Reenginering Tahun: 2010.

Copyright 2007, Paradigm Publishing Inc. EXCEL 2007 Chapter 5 BACKNEXTEND 5-1 LINKS TO OBJECTIVES Transpose data Paste with mathematical calculation Paste.

On Site Review Process Office of Field Services Last Revised 8/15/2011.

HIPAA Security A Quantitative and Qualitative Risk Assessment Rosemary B. Abell Director, National Healthcare Vertical Keane, Inc. HIPAA Summit VII September.

Using OMB Section 508 reporting in addressing your agency's program maturity. How to Measure Your Agency's 508 Program.

Boston Geneva San Francisco Seattle Cost-Revenue Staff Survey: Instructions and Tips Cost-Revenue Supplemental Materials December 3,

Evaluate Phase Pertemuan Matakuliah: A0774/Information Technology Capital Budgeting Tahun: 2009.

Project Setup and Execution For PMPlan Enterprise Presented by AlNik Solutions Copyright ©

Welcome to AB140 Introduction to Management Unit 6 Seminar – Control Robin Watkins.

SEN 460 Software Quality Assurance. Bahria University Karachi Campus Waseem Akhtar Mufti B.E(C.S.E) UIT, M.S(S.E) AAU Denmark Assistant Professor Department.

DECEMBER 2013 ASYLUM ACCESS Budget vs. Actual Briefing.

6/6/ SOFTWARE LIFE CYCLE OVERVIEW Professor Ron Kenett Tel Aviv University School of Engineering.

© PeopleAdvantage 2013 All Rights Reserved We will Show You How to Easily Conduct Effective Performance Appraisals LCSA Conference 2013.

IS&T Project Reviews September 9, Project Review Overview Facilitative approach that actively engages a number of key project staff and senior IS&T.

Microsoft Excel Illustrated Introductory Workbooks and Preparing them for the Web Managing.

Slide 1 Systems Analysis and Design with UML Version 2.0 An Object-Oriented Approach, Second Edition Chapter 3: Project Initiation.

MODULE 4 Resource Estimation

Fundamentals of Information Systems, Sixth Edition

Systems Analysis and Design in a Changing World, 4th Edition

Systems Implementation,

SYSTEMS ANALYSIS Chapter-2.

Continuous Improvement through Accreditation AdvancED ESA Accreditation MAISA Conference January 27, 2016.

Auditing & Investigations I

Description of Revision

Version 0.1Assessment Method Overview - 1 Process Assessment Method An objective model-independent method to assess the capability of an organization to.

Project Initiatives Identified by the CIA Project

Overview – Processes Overview Purpose Roles & Responsibilities

Today’s Agenda Welcome and Introductions Human Resources – FY’15 Budget Salary Action Guidelines Budget Workshop Calendar Budget Policy Updates Budget.

Job Analysis CHAPTER FOUR Screen graphics created by:

AICT5 – eProject Project Planning for ICT

Enterprise Content Management (ECM) Project

Introduction to Computers

{Project Name} Organizational Chart, Roles and Responsibilities

Assistive Technology Devices & Assistive Technology Services

Health Capital Technical Topics

Presentation transcript:

©2002 First Consulting Group F I R S T C O N S U L T I N G G R O U P Security HIPAA Tool Training

©2002 First Consulting Group 2 Agenda  Objectives  HIPAA Tool Overview - Security Uses and results Features and compatibility Worksheet overviews  Questions

©2002 First Consulting Group 3 Objectives At the end of this presentation, you should:  Understand the structure of the HIPAA Security Assessment Toolkit  Understand how to fill out the HIPAA Security Assessment Toolkit  Understand how to review the HIPAA Security Assessment Toolkit in different levels of detail  Understand how to maintain the HIPAA Security Assessment Toolkit as your assessment activities continue

©2002 First Consulting Group F I R S T C O N S U L T I N G G R O U P HIPAA Tool Overview - Security HIPAA Tool Training

©2002 First Consulting Group 5 Uses and Results  The toolkit is used for Self-assessment Inventory Strategic planning  A completed toolkit will result in Organizational gap analysis  Current operations vs. proposed operations Policy and procedure inventory Policy and procedure gap analysis  Current documentation vs. proposed documentation Organizational remediation efforts and costs

©2002 First Consulting Group 6 Features and Compatibility  Advanced MS-Excel features Worksheets contain grouped rows; creating a summary effect  Rows preceded with “+” are hidden  Rows preceded with “-” are exposed Worksheets contain commented cells  Cells containing a triangle in the upper right corner have comments  Comments are activated by resting the mouse pointer on the cell  MS-Excel Compatibility

©2002 First Consulting Group 7 Worksheets  Introduction  Participants  Guidelines  P&P Inventory & Gap Matrix  Assessment Worksheets Administrative Procedures Physical Safeguards TSS - App TSM - Net  Summary  Metrics  Solution Sets  Gantt

©2002 First Consulting Group 8 Worksheet - Introduction  Worksheet Usage: Document the purpose of the tool, organizational detail, and workbook usage instructions.  Worksheet Benefit: The organization detail will aide when distributing the workbook to multiple organizations.  Worksheet Modifications: Modify to collect the detail deemed necessary

©2002 First Consulting Group 9 Worksheet - Participants  Worksheet Usage: Document all individuals providing feedback and/or completing this toolkit.  Worksheet Benefit: The inventory of participants will assist individuals in understanding the context of feedback. Additionally, the inventory of participants will provide the opportunity to ensure all functional areas are represented appropriately.  Worksheet Modification: Modify to collect the demographic data deemed necessary.

©2002 First Consulting Group 10 Worksheet - Guidelines  Worksheet Usage: Document all project guidelines (i.e. assumptions, scope predeterminations, and contexts).  Worksheet Benefit: The inventory of guidelines will assist individuals in understanding the context of the feedback, identified gaps, solutions, and solution sets and keep the gap analysis remains in-scope/on-time.  Worksheet Modification: Modify guidelines to reflect the organization being assessed. This worksheet is pre- loaded with guidelines commonly used.

©2002 First Consulting Group 11 Worksheet – Documentation Inventory  Worksheet Usage: Document all policies and procedures used to provide feedback. Polices and procedures should be listed next to the rule for which they have fully or partially provided feedback.  Worksheet Benefit: The inventory of policies and procedures, organized by rule, will provide a graphical representation of areas deficient in documentation.  Worksheet Modification: This worksheet is pre-loaded with the appropriate rules; it is not recommended to alter the rule content of the spreadsheet.

©2002 First Consulting Group 12 Assessment Worksheets  Worksheet Usage: Conduct the gap analysis of the organization against the rules.  Worksheet Benefit: This worksheet will provide a gap analysis indicating HIPAA non-compliance, partial compliance, or full-compliance.  Worksheet Modification: This worksheet is pre-loaded with information. Data entry points are the scorecard and comments columns.

©2002 First Consulting Group 13 Assessment Worksheets  Inquiry HIPAA security rule in question form  Clarification Industry examples for the rule

©2002 First Consulting Group 14 Assessment Worksheets  Questioning system: Def - Is the item defined formally or informally? Doc - Is the item documented? Use - Is the item actively used and applicable?

©2002 First Consulting Group 15 Assessment Worksheets  Scoring system: 0 (Zero) - Not Defined/Documented/Used 1 (One) - Partially Defined/Documented/Used 2 (Two) - Fully Defined/Documented/Used NA - Not Applicable

©2002 First Consulting Group 16 Assessment Worksheets  Comments Justification for the scorecard Reference to policies or procedures Special considerations

©2002 First Consulting Group 17 Worksheet - Summary  Worksheet Usage: Reviewed as a dashboard; providing a summary of all rules and generating an organizational compliance score.  Worksheet Benefit: This worksheet will provide a centralized reporting mechanism for the gap analysis and remediation activities.  Worksheet Modification: This worksheet is functional with the toolkit upon delivery. Modifications, duplications, and/or additions may alter the results on this worksheet.

©2002 First Consulting Group 18 Worksheet - Metrics  Worksheet Usage: A source for all formulas; containing metrics to be applied to the entire workbook.  Worksheet Benefit: This worksheet will provide a centralized sourcing area to allow "What If?" scenarios with formulas.  Worksheet Modification: Upon initiation of the assessment, all information NOT highlighted in gray needs to be obtained. Additions to the worksheet are encouraged to accurately reflect desired metrics to be used for the organization.

©2002 First Consulting Group 19 Worksheet - Solution Sets  Worksheet Usage: Define all solutions (tasks) required to reach full compliance on all rules. Group all solutions into logical solution sets (projects).  Worksheet Benefit: This worksheet will provide opportunities for project generation, project synergy, and budgeting estimates.  Worksheet Modification: This worksheet is pre-loaded with commonly used solutions for each rule. This worksheet should be modified to represent the actual work required.

©2002 First Consulting Group 20 Worksheet - Solution Sets  Solution This worksheet is pre-loaded with common solutions for each rule. This worksheet should be modified to represent the actual work required for the organization to reach full compliance.  Logic Free text description of how the solution will be completed

©2002 First Consulting Group 21 Worksheet - Solution Sets  Hour estimation Bus. FTE Hours - Total number of hours required to complete the task for Non-IS staff IS FTE Hours - Total number of hours required to complete the task for IS staff External FTE Hours - Total number of hours required to complete the task for Non-staff (i.e. consulting)

©2002 First Consulting Group 22 Worksheet - Solution Sets  Cost estimation (automatically calculated) Bus. FTE Costs - The cost of the hours assigned to non-IS FTEs to complete the solution. IS FTE Hours - The cost of the hours assigned to IS FTEs to complete the solution. External FTE Hours - The cost of the hours assigned to non-staff FTEs (i.e. consulting) to complete the solution.

©2002 First Consulting Group 23 Worksheet - Solution Sets  Usage estimation (automatically calculated) Bus. FTE Hours - The percentage utilized of one FTE over one year. IS FTE Hours - The percentage utilized of one FTE over one year. External FTE Hours - The percentage utilized of one FTE over one year.

©2002 First Consulting Group 24 Worksheet - Solution Sets  Total Costs Capital costs include those costs outside of labor (i.e. software, hardware, legal counsel) Total costs are automatically calculated

©2002 First Consulting Group 25 Worksheet - Gantt  Worksheet Usage: Allocate work effort of each solution set across annual quarters. Costs, hours, and usage is automatically distributed.  Worksheet Benefit: This worksheet will provide opportunities for “What If” scenarios  Worksheet Modification: The percentage of allocation should be entered.

©2002 First Consulting Group 26 Questions and Discussion ? ? ? ? ? ? ? ?