Ransomware attacks continue to plague the healthcare industry, with threat actors targeting providers, payers, and vendors handling protected health information (PHI). This session will equip attorneys and compliance professionals with an understanding of the legal risks, regulatory expectations, and enforcement priorities related to ransomware attacks in healthcare.
Topics will include:
- Responding to Ransomware: Best practices for the response and recovery from a ransomware attack.
- Legal Compliance and Ransomware: Legal considerations in incident response, breach notification obligations under HIPAA and state law, and managing communication with law enforcement, regulators, and insurance carriers.
- Regulatory Concerns: How the regulatory landscape impacts the response to ransomware and what to expect after a breach notification.
- Risk Management Best Practices: What healthcare entities and business associates can do now to harden defenses, update risk assessments, and prepare for potential attacks.
Attendees will leave with practical guidance to mitigate risk, align their security programs with regulatory expectations, and effectively advise clients or internal teams in the wake of a ransomware incident.
Lindsay Nickle is a Partner at Constangy, Brooks, Smith & Prophete, LLP. She serves as a vice chair of the Constangy Cyber Team and practices in Dallas. Lindsay has extensive experience managing responses to data privacy and security incidents. Although she has managed hundreds of responses to all sizes and types of data security incidents, she has unique experience managing incidents subject to the Health Insurance Portability and Accountability Act (HIPAA) and the Health Information Technology for Economic and Clinical Health Act (HITECH Act). She has managed some of the largest and most complex healthcare-related incidents in the world. Lindsay also has substantial experience assisting clients with the Payment Card Industry Data Security Standard (PCI DSS). She is uniquely positioned to gauge third-party liability, having served as a trial attorney in healthcare and financial regulatory matters for more than 15 years before beginning to manage responses to data privacy and security incidents. In helping clients mitigate the risk of that liability, she regularly facilitates training and workshops on data security. Lindsay holds the U.S. Certified Information Privacy Professional for United States law (CIPP/US) credential and is a recognized leader in the cyber risk management industry, serving on the Advisory Board for Advisen Cyber Risk Insights Conferences. She also regularly serves as a featured speaker on topics related to cyber insurance, cyber risk mitigation, and data privacy regulation.
To Register
Regardless of membership, you must login to purchase tickets. To do so:
- Under ticket information, click “login to purchase”
- This will take you to the login page. If you are a member, use the login information utilized for your membership. If you are a non-member, you will need to create an account to purchase a ticket. Non-members who have not created an account yet, must select “Register” along the bottom next to “Lost your password?”
- From there, you will create an Account by entering a username, name, email address, and password. Then select “Complete Sign Up.”
- The account will need to be activated by using the link in a confirmation email sent to the registered email address. Once the account is activated, you will login using the credentials provided (username and password).
- Once logged in, navigate to the Program page and select the number of tickets needed and select “Get Tickets” to proceed with the checkout process.
Should you have any questions or issues with the registration process, please contact us at [email protected].
Once you have registered online, you will receive a calendar invitation and information about accessing the program. This program will be held via video conference through Zoom. The program cost is as follows:
- Member – $20
- Non-Member – $40
- Student Member – $5
- Student Non-Member – $25
Interested in becoming an AzSHA Member? Sign-Up Here.
The State Bar of Arizona does not approve or accredit CLE activities for the Mandatory Continuing Legal Education requirement. This activity may qualify for up to 1 hour of CLE credit, 0 hours of ethics, toward your annual requirement for the State Bar of Arizona.