With nearly 20 years of experience representing healthcare industry
professionals and entities, Vimy Devassy provides her clients with an indepth understanding of industry compliance and regulatory issues.
She has broad experience structuring complex transactions among
healthcare providers, negotiating a broad spectrum of industry relevant
contracts, and advising clients on day-to-day regulatory and compliance
matters, including fraud and abuse laws and health information laws.
Certified as a Health Care Information Security and Privacy Practitioner
(HCISPP) as well as an Information Privacy Professional (CIPP) by the
International Association of Privacy Professionals, Vimy has extensive
experience managing issues related to confidentiality, privacy and security
of health information, including compliance with the rubric of laws relating
to health information privacy such as the Health Insurance Portability and
Accountability Act (HIPAA). Her work includes helping clients understand
how to align their privacy and information security programs in compliance
with applicable laws, respond to potential breach and security incidents,
permissibly utilize and share their health data, and navigate complex
privacy and security laws as they consider innovative new technologies
and business opportunities.
HHS OCR issued a record number of HIPAA settlements in 2020 in cases involving patient “right of access” violations. Meanwhile, compliance with HHS’ health IT interoperability and information blocking regulations – which include provisions for providing patients secure access to their health information via...
With nearly 20 years of experience representing healthcare industry
professionals and entities, Vimy Devassy provides her clients with an indepth understanding of industry compliance and regulatory issues.
She has broad experience structuring complex transactions among
healthcare providers, negotiating a broad spectrum of industry relevant
contracts, and advising clients on day-to-day regulatory and compliance
matters, including fraud and abuse laws and health information laws.
Certified as a Health Care Information Security and Privacy Practitioner
(HCISPP) as well as an Information Privacy Professional (CIPP) by the
International Association of Privacy Professionals, Vimy has extensive
experience managing issues related to confidentiality, privacy and security
of health information, including compliance with the rubric of laws relating
to health information privacy such as the Health Insurance Portability and
Accountability Act (HIPAA). Her work includes helping clients understand
how to align their privacy and information security programs in compliance
with applicable laws, respond to potential breach and security incidents,
permissibly utilize and share their health data, and navigate complex
privacy and security laws as they consider innovative new technologies
and business opportunities.
Attorney, Senior advisor for Cybersecurity, HHS Office for Civil Rights
Nicholas Heesters is a certified information privacy professional with over 25 years of experience supporting technology and information security efforts in many diverse industries including financial services, government, defense, education and healthcare. He earned a Master of Engineering in Computer and Software Engineering from Widener University and his Juris Doctor from the Widener University School of Law. Currently, Heesters works for the U.S. Department of Health and Human Services Office for Civil Rights supporting HIPAA compliance and enforcement activities.
Ms. Malikah “Mikki” Smith serves as the Chief Information Security Officer
(CISO) and Director of the Cybersecurity and Enterprise Architecture Division (CEAD), within
the Office of the Chief Operating Officer (OCOO) at HHS’s Office of the National Coordinator
for Health IT. Mikki tenure of government service with ONC has included serving as the
resident cybersecurity expert for HealthIT policy and governance, operational technology and
cross organizational collaboration.
Mikki joined the ONC organization in 2015, bringing a wide breadth of Cybersecurity
experience from multiple Federal and private sector roles spanning 15+ years of IT,
Cybersecurity and Security Program acumen. She is considered an industry leader and expert in
the area of information system security policies and procedures, applications and network
security architectures, DoD and Management & Budget (OMB) and Federal IA and Security
requirements. She has authored articles, contributed to key legislative and congressional
publications, and leads global cyber initiatives.
Mikki Smith has served as a Cybersecurity leader for agencies such as the Defense Health
Agency (DHA), Department of the Interior (DOI) and Federal Emergency Management Agency
(FEMA). She has led large, complex, multi-disciplined and multi-geographical cybersecurity
teams and programs within the private sector and government space.
A Certified Information Systems Security Professional (CISSP), Project Management
Professional (PMP) and Certification and Accreditation Professional (CAP) she has been
recognized and is continually awarded for her leadership and technical expertise
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing cybered.io, you agree to our use of cookies.