Implementing NYS Healthcare Reform Initiatives: DSRIP Update and Key IT Initiatives Greg Allen, NYS Medicaid Policy Director

Similar documents
AMCH PPS. Clinical & Quality Affairs Committee

DSRIP Workforce: A Need/Should/Nice Perspective

Medicare Data Solutions RFP FAQ

Overview of Health Information Exchange (HIE) in the Era of Meaningful Use December, 2010

Phase I 1st Stage Requirements

The Center for Primary Care Informatics: CPCI for the C-Suite. CHCANYS Annual Conference October 25, 2017

Health Information. for Government. Maximize the Value of Your Health Information Exchange

Achieving Healthcare Interoperability in the Cloud with WebSphere ESB

Santa Cruz Health Information Exchange Transitioning HIE Platform

Duane Steward, DVM, MSIE, PhD Nemours, Chief Computer Scientist for Clinical Informatics University Central Florida, Assistant Professor

Preparing For & Managing a RADV Audit

Prepare for GDPR today with Microsoft 365

Living Our Purpose and Core Values CODE. Code of Business Ethics and Conduct for Vendors

A High-Touch Approach to Improving Patient Access. Using field support to navigate reimbursement challenges

Top 5 Must Do IT Audits

Healthier Washington: Analytics, Interoperability and Measurement (AIM)

Legacy Health Data Management, an Overview of Data Archiving & System Decommissioning with Rick Adams

Moving From Big Data To Smart Data: How To Integrate Clinical & Financial Data To Manage Performance

Standard Statement and Purpose

Enterprise Data An Untapped Asset for Succeeding as Healthcare Changes

Strategies to increase profitability in Hospitals

HOSPITAL REPORT MANAGER SUBSCRIBER - ONTARIOMD SERVICE LEVEL AGREEMENT

Regional Extension Center Request for Information Meaningful Use EHR Vendors July 26, 2010

Leveraging Collaboration to Assess ICD-10 Readiness and Reduce ICD-10 Operational and Financial Risks

Minnesota Health Insurance Exchange (MNHIX)

How to Finish the HIPAA Security Risk Analysis and Meaningful Use Risk Assessment

How Information Transformation Drives Healthcare Performance

All customers are encouraged to upgrade to Intergy v9.00 immediately in order to prepare for the ICD-10 transition.

Oklahoma Health Care Authority

Pega Care Management for Healthcare

Kansas Eligibility Enforcement System (KEES) Joint Committee on Information Technology. Glen Yancey KEES Project Director May 3, 2017

ADDING VALUE BY AUDITING HEALTH INFORMATION IMPLEMENTATIONS ALEX ROBISON DAVID ZAVALA

TOTAL PAYER PAYMENT SOLUTION

Spend visibility and shared services Strategies to address growing pains for long-term care organizations

teamplay data sheet valid from March 2017 teamplay data sheet siemens.com/teamplay

Navigating the New Health Economy

Provider Directory Data Quality Compliance Program

Finding Needles in a Haystack Advancing patient care, flow, and access by leveraging clinical data channels

Over a Hundred Reporting Clients throughout the country. 95%+ Client Retention

Strategic Language access PLan (LaP) to improve access to cms federally conducted activities by persons with limited english proficiency (lep)

Optum Intelligent EDI. Achieve higher first-pass payment rates and help your organization get paid quickly and accurately.

Provider Network Analytics:

Synapse RIS SOLUTIONS

Advanced Analytics in Cyber Security

Governance Policies for PCORnet, the National Patient-Centered Clinical Research Network

AWS Life Sciences Competency Consulting Partner Validation Checklist

Informing Patient Responsibility Early in the Revenue Cycle

Optum Performance Analytics

Realizing Business Value through Collaborative Document Development

Customer Service Portal Overview

Powering the Connected Healthcare Ecosystem

THE BODY OF KNOWLEDGE FOR MEDICAL PRACTICE MANAGEMENT A FRAMEWORK FOR SUCCESS

APIXIO HCC PROFILER Reimagining Risk Adjustment

The Tenth National HIPAA Summit Baltimore, Maryland. April 6-8, 2005

MODULE I: MEDICARE & MEDICAID GENERAL COMPLIANCE TRAINING

Baptist Health South Florida

Venn Health Partners. Venn Health Partners, 906 Oak Tree Ave, Suite R, South Plainfield New Jersey, 07080,

2017 IBM Corporation. IBM s Journey to GDPR Readiness

Data Analytics in Healthcare

Privacy Policy MONAT GLOBAL

Real-time payment transfer fraud detection

DOCUMENT CHANGE HISTORY. Description of Change Name of Author Date Published. Benefit Enrollment & Maintenance/Premium Payment Subgroup

Compliance Plans. Kelly S. McIntosh July 20, 2017

Presentation Overview

1. For Service Bus relay, we guarantee that the properly configured. application would be connected with deployed relay in in at least 99.

The University of Texas MD Anderson Cancer Center Internal Audit Annual Report for FY2016

SOA in the pan-canadian EHR

2017 Cost of Data Breach Study

2016 Cost of Data Breach Study: United States

Recovery Technology. Quality Management/Performance Improvement Plan

Vol. 2 Management RFP No. QTA0015THA A2-2

Directorate of Strategy & Planning DATA QUALITY POLICY

NTT DATA Service Description

Incident, Problem, and Change Management

ICD-10 Lessons Learned and a Look Forward A Tale of Two States

Reducing EMR and Clinical System Downtime

SAP Enterprise Threat Detection Overview & Roadmap. Martin Plummer, SAP SE November 2016

Medicare Advantage risk adjustment: How deep is the well?

Fulfilling CDM Phase II with Identity Governance and Provisioning

Phase IV CAQH CORE 454 Benefit Enrollment and Maintenance (834) Infrastructure Rule v4.0.0

Kareo Managed Billing Service

2017 Cost of Data Breach Study

Financial Services Compliance

Managing Denials: Covering all the Bases

LIST OF TABLES. Table Applicable BSS RMF Documents...3. Table BSS Component Service Requirements... 13

TECHNOLOGY brief: Event Management. Event Management. Nancy Hinich-Gualda

Optimization: The Next Frontier

INTRODUCTION WELCOME TO MODERE.

Presentation for the 2016 HCBS Conference

Commonwealth Health Insurance Connector Authority

siemens.com/teamplay teamplay data sheet

Data protection in light of the GDPR

elearning Ambulatory Course Catalog >> October 2014

Sage MAS 90 and 200 Product Update 2 Delivers Added Value!

Centricity 360 Suite Case Exchange Physician Access Patient Access

ehealth Exchange Network in U.S. Bottom Up Complements Top Down?

ACA & PBJ COMPLIANCE GUIDES (A.K.A. HOW TO STAY PENALTY FREE) V4 (0601F)

HIPAA PRIVACY RULE IMPLEMENTATION WHAT S UP AFTER 4/14/03?

Making the right choice: Evaluating outsourced revenue cycle services vendors

Transcription:

Implementing NYS Healthcare Reform Initiatives: DSRIP Update and Key IT Initiatives Greg Allen, NYS Medicaid Policy Director

DSRIP IT Leadership DSRIP IT Leadership Gregory S. Allen, MSW Director, Program Development and Management, Office of Health Insurance Programs, New York State Department of Health As Director of the Division of Program Development and Management, Greg is responsible for Medicaid services planning, policy and performance support in addition to development of new and emerging program areas. 2

MRT Waiver Amendment: NYS DSRIP Program overview en 3

DSRIP Overview NYS DSRIP Program: Key Goals Transformation of the health care safety net at both the system and state level Reducing avoidable hospital use and improve other health and public health measures at both the system and state level Ensure delivery system transformation continues beyond the waiver period through leveraging managed care payment reform Near term financial support for vital safety net providers at immediate risk of closure

DSRIP Overview DSRIP Program Principles

DSRIP Overview NYS DSRIP Plan: Key Components Key focus on reducing avoidable hospitalizations by 25% over five years. Statewide initiative open to large public hospital systems and a wide array of safetynet providers Payments are based on performance on process and outcome milestones Providers must develop projects based upon a selection of CMS approved projects from each of three domains Key theme is collaboration! Communities of eligible providers are required to work together to develop DSRIP Project Plans

DSRIP Overview PERFORMING PROVIDER SYSTEMS (PPS): Local Partnerships to Transform the Delivery System Partners should include: Hospitals Health Homes Skilled Nursing Facilities Clinics & FQHCs Behavioral Health Providers Home Care Agencies Community Based Organizations Practitioners and Other Key Stakeholders Responsibilities must include: Community health care needs assessment based on multi-stakeholder input and objective data. Building and implementing a DSRIP Project Plan based upon the needs assessment in alignment with DSRIP strategies. Meeting and reporting on DSRIP Project Plan process and outcome milestones. Currently there at 25 Performing Provider Systems across the State of New York 7

NYS DSRIP Program: Key IT Support Initiatives for PPSs 1. Data Protection: System Security Plans 2. RHIO Integration 3. Target Operating Models 4. Technologies to Support Transformation en 8

Recent National Breaches Data Security/Protection Breach Description # Records Suspected Root Causes Anthem Criminal attackers obtained data from compromised servers. Stolen data will likely be sold on black market and used for Phishing attacks on individuals. 80 M State sponsored attack suspected, Phishing, fake domains we11point.com. Lack of awareness. Federal Office of Personal Services One of the largest breaches of federal employee data. Personal information and security clearance data stolen. Undetected for a year. Hackers obtained administrative permissions. 18 M State sponsored attack, zero-day tool against existing vulnerability. Sensitive data stored unprotected. Premera Healthcare Company breached and then slow to respond and is now being sued by 5 groups. 11 M Malware on systems, insufficient controls. Carefirst Initial breach discovered last year, company assumed it was resolved; however, 10 months later data was still being lost. 1.1 M Lack of awareness to Phishing attacks.

Data Security/Protection Healthcare Related Breaches & Trends Premeditated criminal attacks are the new leading cause of data breaches in healthcare According to the Washington Post and CMS since 2009: Data on over 120 million people has been compromised in more than 1,100 separate breaches at organizations handling protected health data Healthcare data is being targeted because it has a long shelf life compared to credit card data. Where new cards are re-issued after a breach, individual s private data losses cannot be so easily repaired

System Security Plan Overview and Importance GOAL: PROTECT, PROTECT, PROTECT Sensitive Information Provides a framework for a secure IT environment that meets DOH requirements Intended to serve as a tool for the DOH and business associates in determining requirements and documenting implementation of required security controls Divided into separate sections, based on the 18 control families in NIST SP 800-53 Rev. 4 that contain: - CMS Moderate-Baseline minimum control requirements - Additional requirements, commensurate with NYS policies and standards ( Moderate Plus ) - References to published documentation - Control assessment procedure Data Security/Protection

Data Security/Protection SSP Workbook Submission Dates and Areas of Focus Set 1 Due October 31, 2015 IA Identity and Authentication SC System and Communications Protection CM Configuration Management AC Access Control Set 2 Due January 31, 2015 AT Awareness and Training AU Audit and Accountability IR Incident Response PE Physical and Environmental Protection PS Personnel Security Set 3 Due April 30, 2016 CA Security Assessment and Authorization RA Risk Assessment SI System and Information Integrity MP Media Protection Set 4 Due July 31, 2016 PL Planning PM Program Management SA System and Services Acquisition CP Contingency Planning MA Maintenance Once completed the SSP will allow for a PPS to have a comprehensive Data Security and Confidentiality plan/program that adheres to DSRIP standards.

NYS DSRIP Program: Key Support Initiatives for PPS 1. Data Protection: System Security Plans 2. RHIO Integration 3. Target Operating Models 4. Technologies to Support Transformation en 13

Importance of connectivity Improving the efficiency and quality of healthcare decreases the cost of care Efficient delivery of high quality healthcare requires team work and collaboration: Holistic action plans to stabilize and maintain the health and well-being for vulnerable members of society The plans should apply leading practices grounded in a sound understanding of the needs of the patient Treatment plans should target all of a patient s needs, for example: transportation, nutrition, and mental health Every team member needs to understand the plan and their role in the plan Team work requires timely and precise sharing of information. This includes: Reliable near real-time information exchange Standard information structure and vocabulary Automatic, yet discrete information sharing The RHIO/QE and SHIN-NY IT infrastructures are the core components that enable the healthcare delivery teams to share the information needed to support the efficient delivery of high quality healthcare

Value of the RHIO/QE The RHIO/QE provides a valuable service supporting the DSRIP programs as their infrastructure, both technically and from a policy perspective, is established to support data exchange and protect patient information. Participation Agreement Require RHIO/QE participants to comply with SHIN-NY Policy Standards Consent Management Ability to track that a patient has given express consent for access by their treating providers to their clinical Protected Health Information (exceptions apply) Authorization Process for determining whether a particular individual within a Participant has the right to access Protected Health Information via the SHIN-NY governed by a RHIO/QE Authentication Verifying that an individual who has been authorized to access information via the SHIN-NY is who he/she claims to be Access Access controls govern when and how a patient s information may be accessed by Authorized Users through a RHIO/QE s participant Audit Oversight tools for recording and examining access to information through a RHIO/QE (who accessed what data and when) and are necessary for verifying access controls Breach -- Minimum standards RHIO/QEs and Participants will follow in the event of a breach

Minimum Core Services List of Minimum Core Services* Patient Record Lookup Secure Messaging Consent Management Notifications (Alerts) Identity Management and Security Provider and Public Health Clinical Viewer Public Health Integration Results Delivery Provides Authorized Users with the ability to search for existing patient records within the local RHIO/QE, across all other RHIO/QEs statewide Secure messaging services provide Authorized Users with the ability to send peer-to-peer messages between two trusted Providers Provides the ability to track patient consent according to New York State law and other requirements defined pursuant to the Statewide Collaboration Process for the SHIN-NY Notification services allow Authorized Users to establish subscriptions to pre-defined events and receive notifications when those events occur. These services are subject to consent requirements established pursuant to the Statewide Collaboration Process Identity management and security services provide for secure access and ensure patient privacy through the authentication of all requests by individuals and organizations to view protected health information accessible through the RHIO/QE The RHIO/QE will make available to qualified Providers and Public Health Authorities the ability to securely access individual patient records from all available local, statewide, and other data sources accessible by the RHIO/QE Route required public health reporting information from primary sources to New York State and New York City Public Health Agency (PHA) designated aggregation points and return response messages from the respective PHAs to the originating Provider Deliver diagnostic results and reports back to ordering Providers and others designated to receive results * http://nyehealth.org/wp-content/uploads/2014/06/shin-ny-policy-standards-2014-06-11.pdf-adobe-acrobat-pro.pdf, July 2014

Critical Next Steps for PPSs and RHIOs What PPSs/RHIOs Should Do: PPS and RHIO to work together to determine the right connectivity models Continue to increase adoption among providers What DOH is Doing: Assess the security and policy requirements for the RHIO to merge claims data with clinical data Pilot clinical/claims integration plans to better support the PPS

NYS DSRIP Program: Key Support Initiatives for PPS 1. Data Protection: System Security Plans 2. RHIO Integration 3. Target Operating Models 4. Technologies to Support Transformation en 18

Introduction Target Operating Model for PPSs In addition to the vast array of provider types that make up a Performing Provider System, there are a number of external partners, suppliers, clients and governing entities to that must be accounted for in their future state designs. Payers MCOs

Target Operating Model for PPSs Target Operating Model Development To navigate the feedback from key stakeholders, the DOH has produced an IT TOM toolkit. More than just a Gap Analysis tool, it is a collaborative methodology for designing target operating models and defining system requirements. 1 2 3 COLLABORATIVE WORKSHOPS TARGET OPERATING MODELS SYSTEM REQUIREMENTS PPS Partner Zone Review Care Plan 13 Care Manager Care Management System Alert 10 11 Request Request records appts 14 12 Receive Medical History 16B, 18B, 20B, 22B, 24B, 26B, 28B Appt confirmations 27 HIE/QE PPS Pilot Workshop 1 IT TOM Business Operations for Project 2.a.i Shelter System PCP EMR System Schedule appt 28A Confirm appt 15 Schedule appt Confirm Suppliers appt 16A EMR Vendor 26A Schedule Confirm transportation 25 Schedule 17, 19, 21 appt 18A, 20A, 22A Confirm appts 24A Governors Schedule visit Confirm appt Specialist EMR System Outpatient Substance Abuse System DOH transporation CMS NCQA JCAHO OMH OMC 23 Clients Patients DATE, 2015 HIE Vendor Care Mgmt. Vendor Transportation System PPS Insured Population Uninsured Population Medicaid Members Population Health Vendor Outsourced Services Emergency Services RHIO / SHIN-NY DoC Other PPSs External Partners DOH (SIM) Other Local HHS Partners Medicare Members Patient s Family Care Givers Patient-centered scenarios as they navigate through the PPSs integrated delivery system. Both business operating models and system architecture diagrams are included. Requirement traceability matrices (RTM) align system requirements with business processes.

Target Operating Model for PPSs Benefits to Collaborative Methodology Through our pilot program, multiple benefits have been identified for following this collaborative approach. Provides a methodological starting point Promotes collaboration between multiple entities including CBOs and MCOs Workshop Overview Achieves stakeholder buy-in Identifies enablement opportunities Identifies implementation areas to prioritize Performs gap analysis Contact us for more information: us-advdsripittom@kpmg.com Identifies key partners to engage

NYS DSRIP Program: Key Support Initiatives for PPS 1. Data Protection: System Security Plans 2. RHIO Integration 3. Target Operating Models 4. Technologies to Support Transformation en 22

DOH Supporting Tools for DSRIP The DOH will help PPSs reach DSRIP goals through the use of several IT tools Medicaid Analytics Performance Portal State Partners, MCP, HH, CMA State Partners, MCP, HH, CMA State Partners, PPS PPS, State Partners, MCP, HH, CMA Health Homes Business & Member Tracking Member Tracking Billing Support Provider Management Health Homes Care Plans Assessments Care Plan & Management Multi-Disciplinary Teams Consent DSRIP Online tools Member Attributions Provider Network Project Plans/Quarterly Reporting PHI Downloads ANALYTICS & PERFORMANCE MGMT DSRIP Dashboards Performance at a Glance Health Home Dashboards Master Data Management Information Exchange Master Provider Index Master Member Index MDW ETL RHIO/SHIN-NY (HL7) Data Processing & Calculations Data Analysis / Processing CRG Groupers Monthly Performance Updates 23 Medicaid Data Warehouse

DSRIP Performance Dashboards in MAPP The dashboards which PPSs will have access to through MAPP will be capable of highly directive, interpretive, consumable views MAPP Dashboards have been designed to provide insight and actionable information to help PPSs manage performance

MAPP Dashboards Track Gap to Goal for Performance Measures

MAPP Dashboards Deep Dive into Performance Filter on Accountable Providers: PCP Health Home Care Management Agency MCO

MAPP Dashboards Member-Level Info Note: This document contains fabricated data and does not include personal health information.

MAPP Dashboards Monitor Project Requirements

MAPP Dashboards Keep Track of PPS Progress

MAPP Dashboards Population Insight

MAPP Dashboards Network Composition & Utilization

Questions? DSRIP e-mail: dsrip@health.state.ny.us 32

2024 © businessdocbox.com Privacy Policy | Terms of Service | Feedback