• Free Trial
  • Products
    • LMSThe world’s easiest-to-use learning management system.
    • CoursesA robust library of off-the-shelf learning content.
  • Solutions
    • By Use Case
      • Employee Training
      • Sales Training
      • Customer Training
      • Partner Training
      • Compliance Training
      • View all
    • By Industry
      • Technology
      • Nonprofit
      • Retail
      • Hospitality
      • Healthcare
      • View all
  • Customers
    • Learn more about Litmos customer success stories.
      • Case Studies
      • Video Testimonials
      • I Love Litmos
      • Lenny Awards
    • Featured Customer
      • Sabre, a global travel technology provider, increases revenue by using Litmos to train their sales and technical teams.
  • Pricing
  • Resources
    • Ebooks & Infographics
    • Webinars & Podcasts
    • Events
    • Integrations
    • Blog
  • About
    • Awards
    • Careers
    • Sustainability
  • Free Trial
Litmos
Log in
Contact us
Support
Search
  • Free Trial
  • Products
    • LMSThe world’s easiest-to-use learning management system.
    • CoursesA robust library of off-the-shelf learning content.
  • Solutions
    • By Use Case
      • Employee Training
      • Sales Training
      • Customer Training
      • Partner Training
      • Compliance Training
      • View all
    • By Industry
      • Technology
      • Nonprofit
      • Retail
      • Hospitality
      • Healthcare
      • View all
  • Customers
    • Learn more about Litmos customer success stories.
      • Case Studies
      • Video Testimonials
      • I Love Litmos
      • Lenny Awards
    • Featured Customer
      • Sabre, a global travel technology provider, increases revenue by using Litmos to train their sales and technical teams.
  • Pricing
  • Resources
    • Ebooks & Infographics
    • Webinars & Podcasts
    • Events
    • Integrations
    • Blog
  • About
    • Awards
    • Careers
    • Sustainability
  • Free Trial

eLearning Blog

Sue Miller
Sue Miller

Sue Miller is a national HIPAA, HITECH Act and health care expert focused on covered entities, business associates, federal agencies, states, and national and state trade associations. In the past few years Sue has developed the NIST HIPAA Security risk analysis and audit tool used across the industry.  Sue has also developed HIPAA privacy and security tools for audits, breach notification and HIPAA policies and procedures, plus contingency plans, training plans and training materials used by both covered entities and business associates. Sue has been in a national security and privacy leadership position since she co-founded the WEDI SNIP Security and Privacy Workgroup in 2000. She received her Bachelors and Masters of Science in Biology degrees from Tufts University in Massachusetts, as well as her law degree, cum laude, from Suffolk University Law School in Boston. Sue provides legal services to health care vendors, national accreditation agencies, federal government agencies including the OCR, NIST and CMS, medical societies, hospital associations, and Medicaid agencies. You may contact Sue at tmsam@aol.com or 978-505-5660.

ALERT: OCR is Phished!
Dec 5, 2016 | Healthcare, Security

ALERT: OCR is Phished!

The Office for Civil Rights (OCR) announced on Monday, November 28, 2016, that is was a victim of a sneaky phishing episode. And OCR published a clarification on Wednesday, November 30, 2016. The phishing email disguises itself as an official communication from OCR. It directs recipients to a non-governmental website... more

Protecting Email
Nov 28, 2016 | Business Skills, Healthcare, Security

Protecting Email

The Internet has now been around for 40 years, with email as a core application. The Internet is used in many enterprises to enable computer networking and facilitate electronic communications. In the early years, the security of email communication was not an issue, but it surely is now! The use... more

OCR: HIPAA and Cloud Services
Nov 7, 2016 | Compliance, Healthcare, Security

OCR: HIPAA and Cloud Services

In early October 2016, the Office for Civil Rights (OCR) published an extensive guidance document on Cloud Computing that takes the form mostly of FAQs at http://www.hhs.gov/hipaa/for-professionals/special-topics/cloud-computing/index.html. Basically, it states that that covered entities (CEs) and business associates (BAs) must protect and secure protected health information no matter where it... more

Ransomware – What is it? What has it got to do with HIPAA?
Oct 18, 2016 | Healthcare, Security

Ransomware – What is it? What has it got to do with HIPAA?

The Office for Civil Rights (OCR) guidance: “FACT SHEET: Ransomware and HIPAA”[1] defines ransomware as: “Ransomware is a type of malware (malicious software) distinct from other malware; its defining characteristic is that it attempts to deny access to a user’s data, usually by encrypting the data with a key known... more

OCR Current Round of Audits
Aug 15, 2016 | Healthcare, Security

OCR Current Round of Audits

The Office of Civil Rights’ (OCR) second round of audits began on Monday, July 11, 2016, when selected covered entities received email notification letters on that day. The letter asks for a response within 14 days from the date on the letter (July 25, 2016) confirming your organization’s email information... more

Cybersecurity Insurance – What Is It? How Does It Work? 
Jun 30, 2016 | Healthcare, Security

Cybersecurity Insurance – What Is It? How Does It Work? 

Cybersecurity insurance is an insurance policy that is designed to help with the losses from a variety of cyber incidents, such as data breaches, business interruption or network damage. Each cybersecurity insurance policy, while similar to another policy, is never exactly the same as other insurance policies. Cybersecurity insurance is... more

Jun 7, 2016 | Compliance, Healthcare, Security

OCR and Business Associates

OCR’s interest in Business Associates is not new but they are much more active in this area lately. For example, Business Associates: Are directly responsible for their own security incidents and all HIPAA breaches per the HITECH Act; Will be audited by OCR per the HITECH Act; Are the subject... more

HIPAA Security Rule Risk Analysis/Assessment + OCR Audit Protocols
May 31, 2016 | Healthcare, Security

HIPAA Security Rule Risk Analysis/Assessment + OCR Audit Protocols

The HIPAA Security Rule at 45 CFR 164.308(a)(1)(ii)(A) Risk Analysis requires a covered entity or business associate to “Conduct an accurate and through assessment of the potential risks an vulnerabilities to the confidentiality, integrity, and availability of electronic protected health information held by the covered entity or business associate.” In... more

OCR’s Phase 2 Proactive HIPAA Audits
May 10, 2016 | Compliance, Healthcare, Security

OCR’s Phase 2 Proactive HIPAA Audits

Phase 2 of the proactive HIPAA Audits mandated by the HITECH Act of 2009 began in earnest in March 2016, when OCR sent out emails to survey a number of covered entities. The thumbnail sketch of the new audits includes the following information: 200 covered entities will be audited by... more

ALPHABET SOUP and HIPAA Compliance
Apr 12, 2016 | Compliance, Healthcare

ALPHABET SOUP and HIPAA Compliance

As you may know, there are more than a few federal agencies that impact HIPAA and its compliance. Two or the most important are the Office for Civil Rights, known by its acronym OCR, and The Office of the National Coordinator, its acronym is ONC. OCR writes and enforces the... more

  • 1
  • 2

Also of Interest

  • eLearning Tools
  • Learning Management System Software
  • What are e-learning Online Courses
  • Online Training Courses
  • E-Learning Courses
  • LMS
  • eLearning Platform
  • What is a learning management system?
  • See Additional Resources

Solutions by Use Case

  • Employee Training
  • Customer Training
  • Sales Training
  • Operations Training
  • Gig Worker Training
  • Contractor Training
  • Supplier Training

Solutions by Industry

  • Technology
  • Nonprofit
  • Retail
  • Hospitality
  • Healthcare

Contact Us

Contact
USA: +1 925 490 0401
AUS: +61 3 7066 4851
Email
sales@litmos.com
Support
Address
Contact Us
Litmos Reviews Litmos Reviews
Litmos Careers Careers

© 2023 Litmos US, L.P. and affiliates. All rights reserved.

  • Privacy Statement
  • Terms & Conditions
  • Website Terms