2. HIPAA Compliance: Simple Steps to the Healthcare
Cloud
• Moderator
• Frank Condon, VP Strategic Alliances, HOSTING
• Panel Members
• Lance Goudzwaard, CCO, 3t Systems
• Johan Hybinette, CISO, HOSTING
• Sean Bruton, VP Product Management, HOSTING
2
Welcome to Our Webcast!
3. • Healthcare Cloud Trends
• Cloud Security & HIPAA Compliance
• It’s All About The App
• Case Study
Agenda
5. “Why should we use the Cloud?”
• High costs, low rankings
• Reduced reimbursements
• Increasingly complex chronic conditions
• Lack of internal skills
5
The Healthcare Cloud: Past
6. “Ok, I get it, how do I leverage the Cloud?”
Now the conversation is about:
• Security
• Risk
• Availability
• Support
6
The Cloud: Present
7. “What are the possibilities?”
• Creating agility to flex business models
• Ubiquitous and secure data sharing
• Addressing Security & Compliance
• Shifting chronic care from hospital to home
• Harnessing “big data” for well being and health
Accenture
A New Era for the Healthcare Industry-
Cloud Computing Changes the Game
7
& the Future
8. 8
& the Future
The Healthcare industry can save up to
$450 billion by use big data analytics and
patients make appropriate lifestyle choices
saving 12-17% of the 2.6 trillion US
healthcare spend
- McKinsey and Company
9. 9
& the Future
1. Back ups and Recovery
2. Hosting Operational Applications and Data
3. Hosting of Archived Data
- HIMSS Analytics
11. • I cannot afford being compliant
• I am too busy to become compliant
• I don’t know how to become compliant
• Breaches only happens to larger
organizations
11
HIPAA Misconceptions
12. • Security/compliance is table stakes
• So are:
• Built in high availability
• Testable recovery strategies
• Protection against human error and data loss
• Around the clock monitoring and response
• Ongoing performance management
• Real SLAs and guarantees to back it all up
12
HIPAA isn’t everything
13. • Security/compliance is table stakes
• So are:
• Built in high availability
• Testable recovery strategies
• Protection against human error and data loss
• Around the clock monitoring and response
• Ongoing performance management
• Real SLAs and guarantees to back it all up
13
HIPAA isn’t everything
14. 14
Managed Cloud Foundation
Availability & Recovery Services
Security & Compliance Services
Application Support Services
Professional Services
Healthcare Application Lifecycle Support
16. Data Collection
• Infrastructure Utilization Metrics (CPU,
Memory, Disk, Network)
• IT Goals/Drivers
• Business Goals/Drivers
Analysis
• Compare usage to industry “best-
practices”
• Evaluate alignment of infrastructure to
IT & business goals/drivers
• Evaluate alternative architectures
Design
• Infrastructure sizing recommendations
• Virtualization roadmap
16
Operational Alignment
17. • 20 years as the CEO for large medical
groups does not qualify me to run a
data center
17
Case Study – Introduction
& =
18. • What went well
• What went poorly
• What I would recommend to my fellow
CEOs
18
Case Study – Learn from My
Experience
19. • The changing healthcare landscape
• Where does the cloud fit?
19
Case Study – Takeaways
20. Q&A
20
Moderator
• Frank Condon, VP Strategic Alliances, HOSTING
Panel Members
• Lance Goudzwaard, CCO, 3t Systems
• Johan Hybinette, CISO, HOSTING
• Sean Bruton, VP Product Management, HOSTING
21. Thank you!
21
Be on Solid Ground
Even in The Cloud
Click here to view our on-demand webinar!
Hinweis der Redaktion
Welcome to HOSTINGs Healthcare Community Webcast where we strive to Interact educate and innovate. Today’s topic is HIPAA Compliance and making simple steps to realizing the benefits of the cloud. I will start our panel discussion today by providing a snapshot of the past, present & future of the cloud in healthcare, then our panel will discuss practical steps you can take to get started in the cloud.
Before, I introduce our panel, I want to make you aware that our Healthcare Community Webcast series is intended to be an engaging, thought provoking and a valuable forum for Healthcare IT professionals. In short, This is not a sales pitch
Allright
Let me introduce myself, My name is Frank Condon, VP of Strategic Alliances and I am your moderator for todays webcast. I have been working with Providers and HC ISVs for the past 15 years with the goals optimizing IT infrastructure to improve clinical, financial and Operational benefits.
Our first panel member is Lance Goudzwaard, Chief Commercial Officer, at 3t Systems. Lance can you give us a snapshot of 3t and your leadership role previous to 3t?
Johan Hybinette recently joined HOSTING as our CISO, Johan, tell me about your background and what brought you to HOSTING?
Last but not least, we have Sean Bruton who is HOSTING’s VP Product Management, Sean, how long have you been with HOSTING?
Here is the specific agenda:
As I mentioned earlier, I will discuss Healthcare Cloud trends
Then we will discuss everyone’s favorite topic : Cloud Security
Much hype has been given to security and compliance which is a great first step, but then what? we will discuss the importance of Healthcare Application integration and support
Finally, we will pull these concepts together with an actual customer use case provided by Lance. Then we will wrap up with a summary of the steps to the cloud and Q and A.
With that, I want this to be interactive so I will a challenge for you: I have 3 poll questions and will be giving starbucks gift cards to the person(s) the gets highest number correct. Also, please send questions and thoughts our way.
Lets talk about the backstory of cloud in healthcare. In the ol’ days (2 years ago), Healthcare Providers asked why would I use the cloud? The discussions were often frustrating- hours spent on simply defining the cloud
Then the reality of Healthcare forced organizations to do things differently, to look at new ways of solving old issues.
Here are a few factors cited by providers as reasons they considered moving to the cloud:
High Cost of Healthcare in the US with low outcome rankings compared to other developed nations.
Increased regulations, mandates and decreased reimbursements
Increasingly complex chronic conditions where 40% of the US population has at least one chronic condition and 28% have multiple chronic conditions
Lack of internal skills or resources to adequately manage the infrastructure. Sometimes, Hospitals make the choice to outsource functions outside of their core competence rather than building in house.
in short, government regulations, cost and quality pressures have driven healthcare to innovate much faster and consider the possibilities of the cloud.
Its time for our first question:
Slide 6
What is the average cost of healthcare spent on each person in the united states in 2012?
A. $3426
B.$6207
C.8915
D. 11,602
Answer C
In just the last 12 months we have witnessed an industry of skeptics warm up to the cloud. People realize the potential of the cloud to fundamentally transform how medicine is practiced. People are using the cloud on a daily basis to do banking, education, and communication and seeing the benefits and ease of use then saying “ Okay I get it, how can I leverage the cloud in healthcare to deliver the same benefits?”
or maybe CIOs have had 1 too many physicians walk into their office and say “hey, why cant I just use my Ipad and download the apps I need”? Now the conversation has shifted from why to how? And the industry is asking important ‘first step’ questions like what about security, Risk, availability, support.
Do you know the current cloud adoption rate in healthcare according to the HIMSS Analytics Cloud Survery?
14%
46%
67%
82%
Its 82%, That shocked me, granted the definition of cloud services used by HIMSS Analytics is very broad however it tells me healthcare is ready for the cloud to address regulations, cost and quality
Healthcare is an industry that has largely been untouched by technology to the extent that finance or manufacturing has been changed. The industry is seeing the possibility of fundamentally transforming how medicine is delivered through improved clinical workflow, decision making, sharing data and integrating new pharmacological and biomedical approaches into practical use much more quickly as noted here by Accenture’s whitepaper- A New era for the healthcare industry- Cloud computing changes the game.
McKinsey and Company released a whitepaper stating that The industry can save $450B a year by leveraging big data analytics and if patients also make better decisions about their health resulting in an overall savings of 12-17 % of the US healthcare spend
Finally, on a very tactical and practical note- HIMMS analytics 2014 cloud survey states the next investments HC providers plan to make in the cloud include Back up and delivery, hosting Operational apps and HOSTING archive data. So here is our next Question:
Can you guess what HOSTING’s Healthcare revenue growth rate was in the first 6 months of 2014 compared to all of 2013?
a12%
B. 40%
C.33%
D. 51%
Answer
Questions:
How is healthcare leveraging the cloud today? What workloads, use cases etc?
What type of cloud solutions are being leveraged in healthcare? (Public/Private/Hybrid)?
What issues/hurdles are preventing wider adoption?
Johan:
What does HIPAA regulations mean to healthcare organizations today and how can a Service Provider best support patient privacy?
What are some misconceptions in the marketplace about HIPPA compliance?
What are the impacts of a Meaningful use audits and more rigorous enforcements of HIPAA?
What questions should a CISO be asking their Cloud Service Provider?
Sean:
What does 'PHI Ready 'mean?
How would you define a Healthcare cloud and what are the key components?
Why is operational alignment so important to clients as they move workloads to the cloud?
How does application awareness impact healthcare customers? (why does clinical application integration matter?)
What does Healthcare
Lance:
You leveraged the cloud in your role as a CEO of a large Physician practice, why did you move to the cloud?
What were the benefits?
What were the lessons Learned?
Any Surprises or best practices?
How is the cloud changing they way medicine is being practiced ? (Are there impacts to patient care?)
Certified vs. Compliant
Someone has to provide these functions. If not your provider, then you.