Schedule & Registration

If you are not logged in, please sign in below to register for this event.

Epic Post-Conference Session

Epic Post-conference Session:  
Part 1 - Digital Transformation: The Trials and Tribulations of Transformation with Epic
Part 2 - Epic Extenders: Risks, Controls and Auditing

Presented by:
Kevin Dunnahoo, HCISPP, CISSP, ABCP, ITIL v4 Foundations Certified, HITRUST CSF Practitioner (Protiviti, Associate Director)
Ryan Altschuler, Internal Audit Senior Manager (PricewaterhouseCoopers)

This 4-hour session will take place on Wednesday, December 9, 2020 at 1:00 pm - 5:00 pm Eastern time (12:00 pm - 4:00 pm Central time).  The fees charged are as follows: AHIA Members - $69.00 and Non-members - $169.00

Please Note: 
Registration will now close one day prior to the live event.  
NO REGISTRATIONS FOR THIS EVENT WILL BE ACCEPTED AFTER December 8 at 3:00 PM Eastern Time. No exceptions! 
Accepting the calendar notification is NOT registration – nor will it provide you with logon/access details for the live event.  


Session Description:
This session will include 2 presenters, the first will focus on risks related around Epic Digital Transformation and the second on Epic Extenders. In addition to the presenters there will be time set aside in a user group format to knowledge share among peers. Here is a brief summary of the topics:

Epic User Workgroup: Digital Transformation – the Trials and Tribulations of Transformation with Epic
In today's changing healthcare environment, providers are taking a look at how to become disruptive to their own delivery model and how digital initiatives can play a role. The consumer-focused approach is here, and digital technologies are the key to making it all work. Learn about and discuss the struggles of being able to enable digital transformation in conjunction with Epic. Including a look at automation, telehealth, etc. A few key learning objectives will include covering the key disruptive digital and consumer focused initiatives (with an emphasis on the impact to Epic), exploring potential risk areas to be on the lookout for including barriers/issues as it relates to Epic and insights into how Internal Audit may assist during these efforts.

Epic Extenders - Risks, Controls and Auditing
The Epic Electronic Health Record (EHR) has one of the largest footprints among large healthcare providers in the country. Built into this system are mechanisms to share information, and some system functionality, with the community – even to entities outside of your organization. These tools – such as CareEverywhere, EpicCare Link, Connect, Community Connect – all serve different purposes, are deployed through different mechanisms, and contain different risks inherent to their use. This session introduces these extensions, as well as provides an overview of the risks, controls, and potential audits that can be performed at the various stages of Epic deployment – pre-implementation, newly live, and mature Epic programs. As with most programs, the ability to identify risk as early as the planning stages can be critical, so whether your organization has been live for many years or is just beginning to explore Epic, this session may benefit you. A few key takeaways will include being able to distinguish between the various Epic extensions, their purposes, and deployment mechanisms, understanding potential risks and controls to their organization given their current state of extending Epic into the community. In addition be able to create effective audits to identify and test risk to your organization’s Epic extension.


Learning Objectives:

Following this session, participants will be able to:

1. Discuss the key disruptive digital and consumer focused initiatives (with an emphasis on the impact to Epic). 
2. Explain potential risk areas to be on the look out for including barriers/issues as it relates to Epic.
3. Describe how Internal Audit may assist during these efforts.
4. Distinguish between the various Epic extensions, their purposes, and deployment mechanisms.
5. Compile a list of potential risks and controls to their organization given their current state of extending Epic into the community.
6. Create effective audits to identify and test risk to their organization’s Epic extension.
7. Participate in and inform program design during planning stages of future Epic extensions.


Program Level:
 All

Field of Study: Information Technology

Prerequisites: None

Who should attend: Auditors and/or Information Technology individuals who are in the medical industry and use Epic as their primary EMR.

Delivery Method: Interactive discussion using telephone and Internet technology.

CPE Credits: 4 credit hours

Speaker Bio(s):
Kevin Dunnahoo is an Associate Director with Protiviti’s national healthcare center of excellence and has professional experience providing digital, technology, and cybersecurity consulting and auditing services to his clients.  Kevin has provided value to his clients through his insights and understanding of healthcare IT and business processes including digital transformation, HIPAA and information security regulations, business continuity, and IT audit.  Kevin has co-authored various Protiviti thought leadership whitepapers and published articles has also presented at various national and regional conferences across the US. 

Ryan Altschuler is a senior manager in PwC's Risk Assurance practice who works out of the Los Angeles office. He has spent the majority of his 9+ year career leading EHR system implementations, first as a project manager & implementation specialist with Epic Systems Corporation. Later he worked in the consulting space where he has had experience with several EHR systems, as well as initiating, maintaining, and optimizing Epic Connect Programs. At PwC, Ryan assists providers and payers in the Health Industries vertical to implement controls that reduce operational, strategic, and compliance risks in many areas of interactions with enterprise systems with a focus in Electronic Health Records. He has experience in most major EHR systems, with particular expertise in the Epic EHR where he holds multiple certifications and has a deep knowledge of more than 16 Epic applications.

Please Note: Registration will now close one day prior to the live event.  NO REGISTRATIONS FOR THIS EVENT WILL BE ACCEPTED AFTER December 8 at 3:00 PM Eastern Time. No exceptions! 
Accepting the calendar notification is NOT registration – nor will it provide you with logon/access details for the live event.  


Please Note
: If you wish to receive continuing professional education credits for participating in the discussion, you are required to register and pay the registration fees. You will also be required to answer 3 of the 4 questions asked online during the discussion to qualify for CPE credit.

Cancellations received in writing within 7 calendar days prior to the discussion will be issued a full refund. No refunds for cancellations received within the week of the discussion. For more information regarding refund, complaint and program cancellation policies, please contact AHIA at 888-ASK-AHIA (275-2442).


Continuing Professional Education Credits:
Association of Healthcare Internal Auditors is a registered sponsor with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: www.nasbaregistry.org

When
12/9/2020 12:00 PM - 12/9/2020 4:00 PM