|
Compliance and Regulatory Information from Different Perspectives Date: November 17th 11:15 – 4:00 Location: RPI 275 Windsor St Hartford, CT Agenda: 11:15-11:45 - Lunch and Registration 11:45-12:00 - Opening Remarks 12:00-12:50 - Compliance in a Multi Juristictional Environment 1:00-1:50 - Law that was signed into law earlier this year and its impacts 2:00-2:35 - Civil Suits, multiple states, data breaches, new laws, due dilligence and due care. What does this mean for you now and in the future? Have you considered the civil consequences? 2:35-3:10 - Banking requirements and New Regulations for 2010 3:20-3:55 - PCI-DSS, What you need to know Speakers include:
Scott Mansolillo
Vice President, Associate General Counsel
& Director of Compliance
The Hartford Financial Services Group
Compliance in a Multi-Jurisdictional Environment Jerry Hughes, CISA, QSA Director IT Audit & Compliance Light House IT Compliance ARRA/HITECH Law that was signed into law earlier this year and its’ impact . The impacts on the health care industry and business associates of them outlining the heightened privacy and security standards for health information included in the American Recovery and Reinvestment Act (ARRA) — also known as the economic stimulus bill. Under these provisions, more organizations may face civil and criminal penalties for failing to protect personal health records as required by the Health Insurance Portability and Accountability Act (HIPAA). At the same time, the ARRA strengthens HIPAA data security and breach notification requirements. He will help you make sense of the ARRA ’s health privacy provisions by examining: - Changes to HIPAA’s privacy and security mandates;
- New HIPAA enforcement provisions, including the potential for individual criminal liability; and
- What types of organizations may now be required to comply with HIPAA
Before ARRA, HIPAA did not directly affect organizations that provided data services to hospitals and other covered entities. Now those organizations can be held accountable for failure to comply with HIPAA’s privacy provisions.
Jennifer Morgan DelMonico
Murtha Culina Civil suits, multiple states, data breaches, new laws, due diligence and due care. What does this mean for you now and in the future? Kevin Hamel, Vice President, Security Officer, Security COCC Farmington CT
Banking requirements and New Regulations for 2010 Brian Trevey
Vice President, Global Compliance Services Trustwaves Global Security Service PCI-DSS, What you need to know. REGISTER NOW!
BIOGRAPHIES A. Scott Mansolillo Scott Mansolillo is the Vice President, Associate General Counsel and Director of Compliance for The Hartford Financial Services Group and has held that position since January 2002. He is responsible for The Hartford’s enterprise-wide compliance program including state insurance regulatory compliance, code of ethics, anti-money laundering, OFAC and FCPA matters, record retention and other corporate policies. He also serves as The Hartford’s Chief Privacy officer. Prior to joining The Hartford, he was Vice President and General Counsel of XTRA Corporation, the second largest transportation equipment lessor in North America where he was responsible for all legal matters. XTRA was acquired by Warren Buffet’s Berkshire Hathaway, Inc in November 2001. Prior to joining XTRA in 2000, he held increasingly responsible positions in the Law Department at The Hartford and then was named Assistant Vice President, Capital Planning and Development in the office of the Chief Financial Officer where he was responsible for developing strategies for future capital deployment. He was in private practice from 1987-1992 concentrating in commercial lending, real estate and corporate finance transactions. Scott received his undergraduate degree from Providence College and his law degree from Boston College Law School. Jerry Hughes Jerry Hughes is Director of the Lighthouse IT Governance, Audit and Compliance Practice, with more than 25 years experience in helping companies navigate industry and government regulations. Mr. Hughes is a Certified Information Systems Auditor (CISA), a Payment Card Industry (PCI) Qualified Security Assessor (QSA), and is certified in CoBIT, a best-practices framework for IT management. He is also a frequent speaker on IT regulatory compliance issues. Jennifer Morgan DelMonico Litigation Partner Murtha Cullina LLP Jennifer Morgan DelMonico is a litigation partner in the law firm Murtha Cullina LLP. She represents parties in complex commercial litigation disputes, including those involving claims for business torts and violations of the Connecticut Unfair Trade Practices Act. She also represents defendants in product liability actions and other actions for personal injury and property damage. Ms. DelMonico regularly handles sophisticated electronic discovery issues and consults with clients about managing electronic records and controlling the e-discovery process. She also advises clients about compliance with electronic security and confidentiality laws.
Ms. DelMonico received a Bachelor of Music degree in Oboe Performance from Northwestern University in 1994, and graduated from the University of Virginia School of Law in 1997. From 1997 to 2000, Ms. DelMonico was an attorney in the Product Liability practice group at King & Spalding in her hometown of Atlanta, Georgia. In 2000, she moved to Connecticut and began working at Murtha Cullina, a law firm with over 130 attorneys in six offices throughout Connecticut and Massachusetts. Since 2005, she has served as the partner-in-charge of Murtha Cullina’s New Haven office. Ms. DelMonico is active in the New Haven community. She is currently the Secretary and General Counsel of the Greater New Haven Chamber of Commerce, the Secretary Easter Seals Goodwill Rehabilitation Center, the Chair of the Cultural Affairs Commission for the City of New Haven, and a Director of the New Haven County Bar Foundation. In 2004, Ms. DelMonico was named one of the "Forty Under 40" by the New Haven Business Times, in recognition of her professional success and community involvement, and in 2007, she received the MS Corporate Achiever Award. For more information, please visit Murtha Cullina’s website at www.murthalaw.com. Kevin Hamel Vice President and Corporate Security Officer for COCC, Kevin Hamel is responsible for all physical and information security and risk management. Mr. Hamel works extensively with regulatory agencies to coordinate compliance with applicable laws. He also manages the company’s relationship and activities with appropriate law enforcement agencies. Mr. Hamel holds a Bachelor of Science degree in Computer Information Systems plus a Masters degree in Business Administration. He is a member of ISSA, FSISAC and Infragard, and was recently appointed to Western New England College's External IT Advisory Board to provide strategic expertise and counsel with regard to information technology development. Brian Trevy Brian Trevey leads Trustwave’s Global Security Service practice in the eastern United States and Canada . His team guides clients on numerous compliance and security requirements including PCI, GLBA, HIPAA and FISAP. Brian has over 17 years experience in the information systems audit and security field, with extensive work in the financial services industry including Maryland National Bank, TravelersGroup, and Bank One. In these roles, he performed application and technical reviews of information systems to determine the effectiveness of program change controls, system security, physical security, and disaster recovery. Prior to joining Trustwave, Brian was the Director of Information Security for Wingspanbank.com, the Internet-only financial services subsidiary of Bank One. He was also responsible for managing the information security program for Bank One’s retail line of business. Mr. Trevey holds a Bachelors Degree in Management Information Systems from Loyola College . Certified Information Systems Security Professional (CISSP) Certified Information Security Manager (CISM) Certified Information Systems Auditor (CISA) Qualified Security Assessor (QSA) |
