CIS Logo
tagline: Confidence in the Connected World

HIPAA Audit – Don’t Just Bet the Odds

Wednesday, June 26, 2019 | 2:00 PM EDT

There are many things that are confusing in the collective set of HIPAA (HHS/OCR) regulations and mandates. However, there is one thing you should not be confused about - your obligation. As a HIPAA Covered Entity or Business Associate, your organization should understand and address the multifaced cyber risk landscape. The first step in meeting that obligation begins with a risk analysis.


What you'll learn:

  1. How managing security and privacy risk of patients and patient data is mandated by both State and Federal Law
  2. More about the many ways to draw the attention of OCR Regulators - few of them recommended
  3. How to conduct a risk analysis for your organization


Braun Tacon

Braun Tacon has over 30 years of leadership experience in Information Technology Service Management (ITSM) with a strong focus on cybersecurity. For the past two years, Braun has been been Information Security Officer for the City of Vancouver.

Braun’s professional roles include fifteen years in the United States Air Force (USAF) as an Air Traffic Controller and a Small Systems Computer Manager.  Once retired from the USAF, Braun continued his journey in ITSM holding roles such as Supervisor; Desktop Support, Systems Manager, multiple roles in Information Security; (Global Information Security Operations Manager, Information Security Coordinator, Information Security Officer) as well as a couple of stints as an ITSM Architect.  Braun has held these roles in various industries including Retail (Nike), Payment Processing (Vesta), Healthcare (Avamere Health Care), and Government (USAF and City of Vancouver).

Braun currently is the Information Security Officer for the City of Vancouver, a role he has held for over two years.