Mobile Device Management for Health Care Organizations and Vendors

Price: $224 OnDemand


Sign up today for an entire year of unlimited access to relevant, timely professional learning courses, including webinars, eLearning courses and OnDemand offerings, and keep your professional credits up to date. All for just $399.

Learn more about the subscription!



In this program, we demystify the HIPAA Security Rule and how to apply the administrative, physical, and technical safeguards in a mobile environment. We discuss key takeaways from the recently released NIST Draft Guide on Securing Health Records on Mobile Devices, including identifying threats and vulnerabilities to data in a mobile environment and different methods for quantifying risk. We also offer practical considerations for conducting a HIPAA risk analysis. From large HIPAA breaches to recent HHS Office for Civil Rights (OCR) enforcement action, we look at lessons learned that may weigh on a mobile device management strategy.

Educational Objectives:
• What the HIPAA Security Rule requires, and practical tips for implementation in a mobile environment
• Methods for assessing the risk to data on mobile devices
• Tools available, such as security controls mapping and vendor questionnaire

Who would benefit most from attending this program?
HIPAA privacy and security officers; privacy counsel; IT managers. 



Mr.Adam Greene, a nationally-recognized authority on HIPAA and the HITECH Act, primarily counsels health care systems and technology companies on compliance with the HIPAA privacy, security, and breach notification requirements. Mr. Greene is a former regulator at the U.S. Department of Health and Human Services (HHS), where he played a key role in administering and enforcing the HIPAA rules. At HHS, Adam was responsible for determining how HIPAA rules apply to new and emerging health information technologies and he was instrumental in the development of the current enforcement process.

Mr.Greene is a regular contributor to Davis Wright Tremaine's Privacy and Security Law Blog, PrivSecBlog.com. He is also a member of DWT’s Breach Response Team (dwt.com/IncidentResponse).

Mr.Greene is admitted to practice in the District of Columbia. He earned his J.D. from George Washington University, his M.P.H. from George Washington University, and his B.A. from The Johns Hopkins University.


Ms. Anna Watterson is a certified information privacy professional with a US private sector (CIPP/US) focus and regularly advises clients on state and federal privacy, security, and data breach matters, with a focus on health information privacy laws, including HIPAA and HITECH. In addition to advising traditional health care providers and business associates on HIPAA compliance, she also advises telehealth providers and vendors and mobile application developers on HIPAA compliance, as well as state law privacy requirements and best practices. Ms. Watterson also helps health care clients understand the Meaningful Use incentive programs and attestation requirements.

As a certified information privacy manager (CIPM), Ms. Watterson understands the structure and governance of privacy programs and the importance of Privacy by Design and considering data and operational life cycles. She helps clients understand how U.S. and international privacy laws, including data protection and data transfer requirements, will impact business operations across different platforms, such as cloud storage and communication tools. Ms. Watterson also understands the unique circumstances that arise when dealing with sensitive types of data, such as mental health or substance abuse information.

Prior to joining DWT, Ms. Watterson was a policy analyst with the U.S. Department of Health & Human Services, Office for Civil Rights (OCR), where she assisted in the rulemaking process, and drafting preamble language and other consumer and industry-focused guidance. At OCR, she was a team lead for the Breach Notification Rule and also helped develop the audit program.  Ms. Watterson frequently writes and speaks on cutting edge HIPAA/HITECH issues and is a regular contributor to the DWT Privacy and Security Law Blog. She is also a member of DWT’s Breach Response Team (dwt.com/IncidentResponse).

Ms. Watterson is admitted to practice in South Carolina and the District of Columbia.  She earned her J.D., cum laude, from the American University Washington College of Law and her B.A. from American University.