• Conducting a comprehensive assessment of the County’s current HIPAA Security and Privacy and Part 2 practices. • Developing and updating policies and procedures to ensure compliance with HIPAA and Part 2 regulations. • Providing ongoing guidance and recommendations on best practices for HIPAA and Part 2 Security and Privacy. • Aiding in the development and implementation of training programs for County employees. • Supporting the County in conducting regular audits and risk assessments. • Advising on incident response strategies and aiding in the management of any breaches or compliance issues. • Staying current with changes in HIPAA and Part 2 regulations and ensuring the County’s practices are up to date. • Investigate potential PHI/ePHI privacy or security events and recommend corrective actions. • Coordinate with and support as necessary the County’s cyber liability insurance carrier and/or breach counsel in the management of any compliance issue, event, or breach as may be warranted.
