Are your data doors wide open?   Are you protecting your customer’s ePHI?  

What do you know about Phase 2 HIPAA Audit Program?

Join our experts as they guide us through protecting our patient data and preparing for the next round of OCR HIPAA Audits.

Date: Thursday, October 19

Time: 2:00 pm – 5:00 pm

Registration: $15

Location: Greenville Hilton Hotel
207 SW Greenville Blvd
Greenville, NC 27834-6907

The HHS Office for Civil Rights (OCR) has begun the next phase of audits.  The OCR will look for fully developed programs that go beyond the minimum requirements for record management and compliance.  Many Healthcare facilities are attacked through onsite systems that are not updated with proper security software.  By understanding the requirements, organizations can design and implement a plan that prepares them for this round of audits.

During the workshop our speakers/panelists will discuss:

  • Educating – How to prepare your team to recognize threats and how to report and respond appropriately
  • Identification and mitigation
  • Protecting mobile devices
  • Best Practices to provide the level of privacy and security needed.
Confirmed Panelists

Jamie Spradlin, Security Compliance Officer, Vidant Health


Jamie Spradlin has spent the past 20 years in cyber intelligence and information security across multiple domains. He is currently the Manager, Security Compliance & Security Access Administration, Vidant Medical Group, focusing on information security policies, procedures, audit and compliance, security education and awareness, and all access provisioning and access management. Prior to joining Vidant, Jamie was the CISO at the University of North Carolina Pembroke, Deputy CISO & Privacy Officer for South Carolina Department of Education, Cyber Intelligence Threat Program Manager for Northrop Grumman and served 11 years on active duty in the U. S. Air Force as an Intelligence/Cyber Intelligence Analyst. He is currently working on his Doctor of Business Administration at the University of South Florida.

Joy Hardee, Senior Administrator, VH Privacy Officer/Research Compliance, Vidant Health

Joy Hardee has worked at Vidant Health since April 1984, starting in Medical Records, then becoming a Supervisor in Quality Management and helping to build the medical staff quality program from the ground up. She worked closely with Joint Commission standards, transferred to Corporate Compliance in December 1999, and was the Administrator over Compliance for VH. In 2003, she took on the Privacy Officer role for the system. Joy built the privacy program from the ground up and implemented it system-wide. She also became certified through AHIMA as a CHPS and RHIA, and is certified through HCCA in research compliance.

Sallie Newton, Security Engineer, Agio |

Sallie Newton is a Security Engineer with Agio in Morrisville, NC, specializing in security risk assessment. She has several years’ experience as an IT security professional in industries including higher education, government, banking, finance, and information security consulting.

Sallie holds a CISSP certification from (ISC)2 and ITILv3 Foundation certification. She is also a Payment Card Industry Qualified Security Assessor (PCI QSA) and a GIAC Information Security Professional (GISP).

Pat Cunningham, RHIA, Director, Health Information Management and Clinical Systems | Nash Health Care Systems