Securing Healthcare: Navigating HIPAA's Privacy Rule and Cybersecurity Landscape

In an era where digital technologies dominate the healthcare landscape, safeguarding sensitive patient data is paramount. The healthcare sector is a vital cornerstone of society and is increasingly vulnerable to malicious cyber threats. Healthcare records contain some of the most sensitive personal data which, if exposed, can leave patients incredibly vulnerable to identity theft or reputational damage. It is critical for attorneys to understand the delicate and intricate world of healthcare data security. Specifically, with a focus on healthcare’s most significant security law, the Health Insurance Portability and Accountability Act (HIPAA) and its transformative Privacy Rule. Legal professionals will be equipped not just with legal information but with strategic foresight that is invaluable in the ever-changing reality of healthcare cybersecurity. This webinar will empower lawyers to be the guardians of patient privacy, ensuring the healthcare sector continues to thrive securely in the digital age.
In this webinar, the expert panelists will begin by discussing the current state of security for the healthcare industry, painting a vivid picture of the threats healthcare entities face in this digital age. Panelists will then introduce HIPAA, the linchpin of healthcare privacy laws and describe the entities the rule covers. They will continue by discussing the information that HIPAA protects and the information it excludes. The panel will go on to outline the Privacy Rule under HIPAA and its permitted uses and disclosures. Finally, the experts will review the proposed privacy rule changes their expectations for how the anticipated changes will affect the future of cybersecurity in the healthcare industry.

Our Mission is to bridge the knowledge gap between law and technology professionals by educating attorneys on technology to attorneys and technology executives on its laws and regulations. Legal Cyber Academy provides a comprehensive tool and evolving knowledge base through exclusive insights from world class cybersecurity, privacy, web 3.0, forensic, and e-discovery legal and technical practitioners. Earn CLE, CPE, and CE credits. (Refunds are available if you do not receive credit) At Legal Cyber Academy We recognize that technology, the cybersecurity threats it faces, and relevant laws and regulation are rapidly evolving, presenting unique challenges and opportunities. Our platform is dedicated to empowering legal professionals with the skills and understanding necessary to navigate the complex landscape of technology in their field, enabling them to effectively advise clients, draft contracts, and navigate legal implications in a technology-driven world. Simultaneously, we strive to equip technology professionals with the legal knowledge they need to make informed decisions, ensure compliance with regulations, and limit liability. By fostering a deep understanding of legal frameworks, we hope to support technology professionals in creating innovative, compliant, and socially conscious technological advancements. Join us in our mission to reshape the way legal professionals and technology experts understand and interact with each other in a rapidly changing technical and legal landscape. Together, they will mitigate risk better, ensure compliance, and actively shape the future of technology and its accompanying laws.

LAW & FORENSICS LLC – FOUNDER; JAMS – NEUTRAL; HARVARD – ADJUNCT;
Danie Garrie, Esq., is the Co-Founder of Law & Forensics LLC, where he heads the Computer Forensics and digital discovery Cybersecurity teams. Daniel has been a dominant voice in the computer forensics and cybersecurity space for the past 20 years, as an attorney and technologist. He is an adjunct professor at Harvard for Computer Forensics, and prior to Law & Forensics, he successfully built and sold several technology start-up companies. Since co-founding Law & Forensics LLC in 2008, Daniel has built it into one of the leading boutique firms specializing in cybersecurity and forensic engineering. He is a mediator, arbitrator, and e-discovery special master for JAMS and is a partner and head of Cybersecurity practice at Zeichner, Ellman & Krause LLP. Daniel earned both a Bachelor’s and a Master’s degree in computer science from Brandeis University, as well as a J.D. from Rutgers Law School. Daniel has led cyber and forensic teams in some of the most visible and sensitive incidents in the United States. He and his team have worked globally for two of the top five banks and dozens of the largest private and public companies in the world. In addition, Daniel has been awarded several patents for advanced cybersecurity and forensic platforms he built with his team, including TableTop.AI, CustodyTrack.IO, and Forensic Scan. Daniel is also well-published in the cybersecurity space and has authored more than 200 articles and books. His work is cited by Black’s Law Dictionary 10th Ed. defining the terms 'software', 'internet', and 'algorithm'. Lastly, he has been recognized by several United States Supreme Court Justices for his legal scholarship and is a trusted source and thought leader for cybersecurity articles and opinions, cited over 500 times to date.

Former CISO/VP Cyber Security | Healthcare Security Advisor | ICIT Fellow
Dave Summitt is a highly accomplished cybersecurity executive with extensive experience in leading and managing cyber security programs and has received industry recognition for his involvement with initiatives that demonstrate thought leadership and outstanding business value. Dave is currently the Vice President of Cyber Security for the Florida Cancer Specialists & Research Institute (FCS) where he is responsible for continuous development and maintaining the cyber security program. In his current role, Dave is responsible for the overall security of FCS’ IT infrastructure. He leads a team of security professionals who are responsible for developing and implementing security policies and procedures, conducting security assessments, and responding to security incidents. Dave is also a member of the organization’s executive leadership team, where he provides guidance and recommendations on security-related matters. Prior to joining FCS, Dave was recruited by and became their first Chief Information Security Officer (CISO) with Moffitt Cancer Center & Research Institute in Tampa, FL where he constructed a comprehensive cyber security program. During his 6-1/2-year time with Moffitt, Dave and his team won numerous awards for his leadership and initiatives. A 21-year federal career with the Department of Defense preceded his entry into healthcare security. Mr. Summitt earned his undergraduate degree in Information Systems Management from the University of South Florida and his master’s in information security with a Digital Forensics concentration from Norwich University. He is a fellow with the Institute of Critical Infrastructure Technology (ICIT) a national cyber security think tank based in Washington DC, a Florida Infragard member, a former member of the Forbes Technology Council and served as an adviser to the Center for Cyber Safety and Education. For several years, Dave has been identified as one of the “Hospital and Health System CISOs to know” by Becker’s Hospital review. Dave has also had the honor of providing testimony before the U.S. Congress concerning security implications to healthcare operations due to phone spoofing and robocalls. He was later appointed by the FCC as Chairperson for the 2020 Hospital Robocall Protection Group, a working group directed by Congress to assist in making recommendations for combating robocalls and phone spam. Dave is a respected leader in the information security community. He is a frequent speaker at security conferences and has written articles for several publications and is getting ready to publish his second season of “3-point Cyber”, a podcast about cyber for the layperson.

Global CISO, OPKO Health, Inc.
Accomplished senior technology security and risk leader with 25+ years of success in ensuring powerful and resilient cybersecurity, governance, risk management and compliance in complex and agile financial services, insurance, pharmaceutical and healthcare companies. Led organizations adapting to disruptive technologies and processes for increased efficiency and productivity maintaining robust availability, integrity and confidentiality. Successfully led companywide projects/teams, ensuring success of the programs and missions.

Founding Partner | Mullen Coughlin
Jennifer A. Coughlin is a Founding Partner of Mullen Coughlin and its Managing Member, guiding the Firm in its commitment to provide effective and efficient data privacy and security legal services and develop, maintain and grow client and partner relationships. She focuses her legal practice solely on providing organizations of all sizes and from every industry sector in first-party data privacy and security incident response and third-party data privacy defense legal services. Jenn has counseled hundreds of organizations in investigating and responding to data privacy and security incidents compromising protected data and network and system security, such as ransomware attacks, business email compromises (BECs) and other network intrusions, among others. She works closely with various organizational and third-party incident response stakeholders including cyber insurance claims teams; forensic investigation and data mining firms; law enforcement; and business partners. Once the incident is contained and the nature and scope is identified, she relies on her knowledge of state, federal and international laws, as well as industry-specific guidance and regulations to assist the victim organization with identifying and complying with legal obligations stemming from the incident. While Jenn has represented organizations from virtually every industry group, she has a particular focus on organizations within the healthcare and life sciences; financial services; hospitality and entertainment; retail/e-commerce; and professional services industry groups. She also represents these organizations with follow-up inquiries related to data privacy and security incidents by state, federal and international regulatory agencies, including state attorneys general; state insurance and health departments; the Federal Trade Commission (FTC); and the U.S. Department of Health and Human Services’ Office for Civil Rights (HHS-OCR). In addition to the first- and third-party legal services she provides, Jenn also assists organizations with pre-incident Advisory Compliance services. She routinely leads tabletop exercises and other training efforts for client’s employees, management and Board members. She also aids in data privacy and information security policy and procedure development, including the development of Incident Response Plans (IRPs). As the Firm’s Managing Member, Jenn leads the 115+ Mullen Coughlin attorneys in the provision of exceptional data privacy and security legal services and the management of client and third-party vendor relationships. She also, in collaboration with the Firm’s equity members and department chairs, oversees the development and implementation of legal, administrative and organizational strategies. Jenn is a frequent speaker and collaborator at industry, client and legal conferences and events. She is often sought after by organizations to present valuable information regarding incident response and data privacy to their teams and clients. In turn, she has developed strong relationships with cyber insurance carriers and brokers, industry thought leaders, third-party incident response partners and law enforcement. Prior to founding Mullen Coughlin with John Mullen, Chris DiIenno and Jim Prendergast (deceased) in 2016, Jenn was a Partner at a full-service law firm in their Data Privacy & Cybersecurity practice group.