PRIVACY & SECURITY FORUM: A HIMSS EVENT
San Francisco, CA - May 11 - 12, 2017
Jamie Lam is the data security compliance manager for the University of California at San Francisco School of Medicine. Jamie develops and executes the vision, strategy and direction for the school’s enterprise risk program and objectives. She has more than eight years of experience in information security, risk assessment, security awareness training and outreach, compliance, governance, policy, IT security controls and audit, data privacy, data protection, and security monitoring. She specializes in healthcare privacy and security and HIPAA compliance.
Shadow IT is growing as tech-savvy employees seek to cut cost and work more effectively. Long gone is the time when enterprise IT had full control of all the technologies used within an organization. When cloud services and custom applications with sensitive data run without the appropriate oversight, it leaves the entire organization at risk of a data breach.
UCSF School of Medicine established the Data Security Compliance Program to address the security of systems not managed by UCSF enterprise IT. This session will include a review of UCSF’s approach to identify, assess, and manage shadow IT risks. Attendees will gain insight into how this world-class healthcare organization empowers employees to include security into their decision making process, and in doing so, is turning security from a department of ‘No’ to a trusted service partner.
One of the most valuable ways to learn is through interaction with your peers. Our “Total Engagement” session will provide an opportunity to meet speakers and attendees who have similar privacy and security challenges and discuss solutions to those challenges. Mingle, share and learn in this interactive environment.
Here's how it works:
Speakers will be stationed at different tables in the ballroom and attendees can circulate and speak one-on-one or in groups with individual speakers.
This is a great opportunity to gather information that addresses your organization’s specific privacy or cybersecurity challenges.