Booz Allen Hamilton
Booz Allen Hamilton has been at the forefront of strategy and technology consulting for more than 100 years. Today, the firm provides services primarily to the US government in defense, intelligence, and civil markets, and to major corporations and not-for-profit organizations. Booz Allen helps clients achieve success today and address future needs by applying functional expertise spanning consulting, analytics, mission operations, technology, systems development, cybersecurity, engineering, and innovation to design, develop, and implement solutions.

Booz Allen is headquartered in McLean, Virginia, employs more than 22,000 people, and had revenue of $5.48 billion for the 12 months ended March 31, 2014. To learn more, visit www.boozallen.com. (NYSE: BAH)

Clearwater Compliance
Clearwater Compliance creates value by assisting healthcare organizations establish, operationalize and mature their information privacy, security, compliance and information risk management programs. Led by veteran, C-suite healthcare executives, Clearwater provides a comprehensive set of capabilities, including by-the-regs HIPAA-HITECH compliance software and tools, risk analysis and management software, professional services, and a variety of educational events and resources.

Clearwater works with healthcare organizations and business associates that are serious about safeguarding the privacy and security of Protected Health Information (PHI) and that are committed to a continuous process improvement approach to managing information risk. Among its varied and loyal customer base, Clearwater serves covered entities ranging in size from major integrated healthcare systems and health plans to large hybrid entity retailers to specialty clinics and small medical practices. Business associate customers include law firms, consulting companies, third party administrators, medical billing companies, software hosting organizations, wellness and data analytic companies and many more, from Fortune 100 companies to healthcare startups.

Coalfire
Coalfire is a leading provider of independent audit, assessment, advisory, vendor management, application security, and testing services for covered entities (CEs) and business associates (BAs). Our healthcare practice experts deliver comprehensive risk management solutions to ensure continuous monitoring of IT security programs to protect ePHI. We are a HITRUST certified assessor organization that can help you achieve the highest level of compliance with HIPAA regulations, state privacy laws, the OCR audit protocol and the NIST framework. We help clients achieve, manage, maintain and report on HIPAA compliance. With Coalfire, healthcare organizations get one-stop shopping for all services related to HIPAA, HITECH, and the final Omnibus Rule. We offer an efficient consolidated audit program that includes PCI compliance and SOC2 compliance; and HIPAAcentral provides the tools to assess compliance then exchange information to share results with a one-to-many, cost-effective solution to continuous compliance management. For more information, visit www.coalfire.com.

Davis Wright Tremaine
Those of us in the Davis Wright Tremaine health care practice group devote nearly all of our time to industry-specific matters. This allows us to develop niche practices within the field that serve needs unique to the health care market. We also understand the business issues and regulatory developments that affect health care delivery and compliance, and as a unified team we can match the attorney with the niche expertise that best addresses client needs. For more information visit our website at www.DWT.com.

HIPAA Academy

(ISC)²
(ISC)² is the largest not-for-profit membership body of certified information and software security professionals worldwide, with over 100,000 members in more than 160 countries. Globally recognized as the Gold Standard, (ISC)² issues the Certified Information Systems Security Professional (CISSP) and related concentrations, as well as the Certified Secure Software Lifecycle Professional (CSSLP), the Certified Cyber Forensics Professional (CCFP), Certified Authorization Professional (CAP), HealthCare Information Security and Privacy Practitioner (HCISPP), and Systems Security Certified Practitioner (SSCP) credentials to qualifying candidates. (ISC)² offers education programs and services based on its CBK. Visit www.isc2.org.

DeviceLock, Inc.
DeviceLock, Inc. is a privately-held worldwide company entering its 19th year of commercial operations, and is a pioneer of Windows endpoint data security, data leak prevention (DLP), and Virtual DLP. DeviceLock provides enterprise DLP software for 'data-in-motion' and 'data-in-use' at the Endpoint layer and 'data-at-rest' eDiscovery DLP for any Windows-based or SMB-based nodes on the network for companies, governments, and the military. The Endpoint DLP Suite, comprised of DeviceLock®, ContentLock™, & NetworkLock™, constitute an AD Group Policy-managed solution for applying granular, contextual, & content-based controls for access, auditing, data shadowing, alerting, and key-logger detection to prevent data leakage through PC peripheral ports, devices, printers, and network applications/protocols. Port-Device security and auditing controls for the Apple OS Macintosh platform are also available. Discovery#153; separately provides a "point-and-shoot" server-based platform for 'eDiscovery' and instant remediation and protection of sensitive data based on its content. Discover more of what we do at www.devicelock.com.

The George Washington University's Healthcare Corporate Compliance Graduate Certificate Program
This CCB-accredited program provides a comprehensive corporate compliance education for current or aspiring healthcare compliance professionals. Offered by the College of Professional Studies & the Milken Institute School of Public Health in partnership with the law firm of Feldesman Tucker Leifer Fidel LLP, the program offers education in healthcare laws and regulations as well as tools and strategies for creating effective corporate compliance programs. The 12 credit program can be completed in seven months with two short in-class residencies in Alexandria, VA and an interactive distance learning segment in-between. Students have access to experts in the field, including healthcare regulators and policymakers, legislators, counsel (both in-house and external), patient advocates and other compliance professionals. No other course or program can offer this level of expertise, or provide the real world experience that you can apply on the job immediately.

For more information visit http://cps.gwu.edu/hcc

Maize Analytics
Maize Analytics provides a big data EMR access monitoring tool to proactively monitor and audit for internal threats. Maize uses a combination of rules and clinical workflow analytics to increase internal fraud detection by up to 95% while allowing healthcare providers to stay ahead of internal privacy threats. Through our ability to analyze millions of clinical accesses per minute, we help compliance professionals to focus on truly suspicious accesses by drastically lowering false positives, and threat ranking. Capitalizing on the ability to analyze millions of clinical accesses per minute, Maize allows compliance officers to focus on the most suspicious accesses. Maize Analytics leverages the solution’s automation in order to provide the most cost effective, and scalable privacy platform available. For more information visit www.MaizeAnalytics.com.

Ostendio
Ostendio is a Virginia based data security & risk management solutions provider that develops affordable compliance solutions for digital health companies and other healthcare entities. Ostendio's MyVirtualComplianceManager™ (MyVCM™) is a cloud based compliance management platform that delivers an easy to use, cost-effective way for companies to improve their Information Security posture. MyVCM™ allows businesses to: assess risk; create and manage critical policies and procedures; educate and assess employees on their security awareness; and monitor continuous compliance against industry regulations.

MyVCM allows companies to manage and demonstrate compliance to an information security standard or a set of security and privacy regulations. The platform allows customers to make a high-level risk assessment; access policy & training templates; create, manage and distribute policy and procedure documents; manage organizational training & assessment; and connect to the Ostendio Marketplace which provides relevant partner services at a discounted rate. Ostendio has also created the MyVCM Trust Network that allows any company using MyVCM to share compliance data with others (including their customers) in order to prove they have a an active and effective compliance program in place.

For more information visit www.ostendio.com.

Thompson Information Services
Since 1972, thousands of professionals in business, government, law and academia have relied on Thompson Information Services for the most authoritative, timely and practical guidance available. Throughout the years, these professionals have come to depend on Thompson for help complying with the ever-changing regulatory mandates facing their organizations in a variety of areas. The trusted guidance Thompson provides has never been needed more. Maybe that's why nearly 90% of Thompson's customers choose to stay with us year-after-year. They value Thompson's content and appreciate that Thompson works hard to earn the right to serve them. In an age of information overload, Thompson's customers know they can count on us for authoritative and practical guidance -- and save time getting it. For more information, call 1-800-677-3789 or www.thompson.com.