Developing a cohesive system for meeting HIPAA compliance standards and the never-ending emergence of new security threats can be overwhelming.  Approaches to effective compliance management are addressed in this short interview with Bob Quandt, owner of Bullseye Compliance, an experienced healthcare information security officer and leader that has held roles with ShareCare, HCA and several other health entities.  The discussion focuses on common challenges faced to by Chief Information Security and Compliance Officers including the security frameworks that work best in healthcare; risk registers and risk tracking approaches; and the importance of obtaining buy-in across departments and varying management levels for new solutions and processes. 

Show notes

• Introduction
• 2:02 Governance Risk and Compliance: emerging risks
• 2:41 How to prioritize risks
• 4:15 Balancing risks of the day with daily activities
• 6:29 What standard works best in the market place
• 8:10 Can automation help with operational process
• 10:15 Communicating risks from “C” level to operational workers
• 13:40 Pitfalls within takingly Governance , Risk and Compliance
• 16:09 Key take-aways for episode