Broadcast Date: Friday, February 19, 2021
from 12:00 pm to 1:00 pm (ET)


The security risk analysis and management obligations required by the Health Insurance Portability and Accountability Act (HIPAA) Security Rule are intended to play a crucial role in mitigating risks and vulnerabilities to the security and confidentiality of patient protected health information (PHI). Organizations that fail to implement these measures may be more susceptible to potential PHI breaches and could be confronted with costly regulatory fines.

With the COVID-19 pandemic continuing to impact healthcare organizations while cybersecurity risks increase at the same time, the importance of strengthening HIPAA security risk analysis and management processes and procedures must be underscored. These processes also continue to be an area of focus for the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR), which has imposed large fines on entities that do not have sufficient HIPAA security programs implemented.

Join privacy and cybersecurity law experts Christine Moundas (Ropes & Gray LLP) and Scott Pink (O’Melveny & Myers LLP) as they provide a comprehensive discussion of HIPAA security rule and security risk management. Speakers will also discuss important security considerations during the COVID-19 pandemic and will offer best practices to comply with the changing landscape.

Key issues include:

  • Overview of HIPAA Security Rule
  • Review of HIPAA Security Risk Management Obligations
  • Review of HIPAA Security Risk Analysis Best Practices
  • Key emerging threats and threat actors
  • Best practices for addressing threats — supply chain management, training, and enhanced security protocols – new safe harbor – Hitech Act Amendment
  • HIPAA requirements relating to use of telemedicine


Course Level:



Advance Preparation:

Print and review course materials


Method of Presentation:

On-demand Webcast (CLE)



General knowledge of health insurance laws


Course Code:



NY Category of CLE Credit:

Area of Professional Practice


Total Credit:

1.0 CLE

Speaker Panel:

Christine Moundas, Partner
Ropes & Gray LLP

Christine Moundas is a partner in the firm’s health care practice group. She is also a co-head of the firm’s digital health initiative and actively participates in the data, privacy & cybersecurity group. Christine provides strategic, regulatory, compliance, and transactional advice to health care clients, including health systems, hospitals, academic medical centers, long-term care providers, pharmaceutical companies, digital health companies, and investors. As part of her practice, Christine also counsels clients on privacy, security and breach matters, and focuses on emerging issues in the digital health space.

Scott Pink, Special Counsel
O'Melveny & Myers LLP

A former general counsel for a major media company, Scott Pink brings an insider’s perspective to his broad-based practice. It’s what’s made him the lead outside advertising and marketing counsel to several well-known brands, and a sought-after resource on intellectual property, privacy and cybersecurity issues. He advises technology, media, entertainment and a variety of consumer product and franchise companies on issues of intellectual property counseling; social media law; cybersecurity and privacy; and advertising, marketing, and promotions law. Scott had led many privacy and security compliance initiatives worldwide for clients, including GDPR compliance, HIPAA compliance audits, compliance with financial security regulations (NYDFS) and security audits for cryptocurrency and blockchain companies.



Christine MoundasPartner

Ropes & Gray LLP

  • Overview of HIPAA Security Rule
  • Review of HIPAA Security Risk Management Obligations
  • Review of HIPAA Security Risk Analysis Best Practices



Scott PinkSpecial Counsel

O'Melveny & Myers LLP

  • Key Emerging Threats and Threat Actors
  • Best Practices for Addressing Threats – Supply Chain Management, Training, and Enhanced Security Protocols
  • HIPAA Requirements Relating to Use of Telemedicine
  • Recent HIPAA Cases
  • New Safe Harbor – HITECH Act Amendment


Download Course Materials

Who Should Attend:

  • HIPAA Privacy & Security Specialists
  • HIPAA Lawyers
  • HIPAA Managers
  • HIPAA Compliance and Risk Managers
  • Health Professionals
  • Healthcare Lawyers
  • Healthcare Institutions


Christine MoundasPartner
Ropes & Gray LLP
Scott PinkSpecial Counsel
O'Melveny & Myers LLP



View Details


View Details


View Details

Join Over 150,000 Professionals Empowering Their Careers

Learn anywhere from over 1800+ live and recorded CLE CPE & Technology webcasts.