A faculty of nationally recognized, fully credentialed experts guides attendees through HIPAA compliance and security risk analysis fundamentals while sharing key insights, hard won lessons learned and practical tools for Risk Analysis and Risk Management.

Bob Chaput, MA, CISSP, HCISPP, CRISC, CIPP/US | CEO & Founder, Clearwater Compliance

Over the past 35 years, Mr. Chaput has worked as an educator, an executive and an entrepreneur.   He has assisted businesses and individuals in developing highly secure information technology (IT) strategies that are tightly linked with their business strategies and goals.  Given world events, increasingly more stringent security, privacy and compliance regulations around safeguarding personal and healthcare information (PII and PHI) along with increased business dependency on technology, his passion and focus is in helping organizations establish, operationalize and mature their information risk management programs.


Jon Stone, MPA, PMP, HCISPP, CRISC | VP, Product Innovation

Jon StoneJon has a unique breadth of experience with a combined 25 years’ experience in healthcare, working in the provider, payer and healthcare quality improvement fields. For the last 15 years Jon has provided strategic leadership for compliance and healthcare technology projects involving the most sensitive ePHI for companies such as CIGNA, Healthways and Ingenix. In addition, he has done extensive consulting in process improvement for HIPAA, healthcare outcomes, business operations, the Systems Development Life Cycle and IT operations. He is Clearwater’s VP of Product Innovation, and helps provide HIPAA Security and Privacy SaaS (Software as a Service) for the healthcare industry.

Jon has a Master’s in Public Administration and Health Care Regulatory Policy. He is certified as a Project Management Professional and has a certification in Project Management for Information Systems from the University of Colorado.

Guest panelists:

Leon Rodriguez, JD | Partner, Seyfarth & Shaw

Leon Rodriguez provides regulatory, litigation and strategic advisory services to clients in areas including immigration, health care, and government/congressional investigations. Leon served as the most recent director of United States Citizenship and Immigration Services (“USCIS”) from 2014 to2017. USCIS is responsible for administering all U.S. immigration matters, including the processing of asylum and refugee applications, immigration benefits, and naturalization and visa petitions. In his role as director, Leon oversaw a workforce of 19,000 government employees in 223 offices around the world.

Laura Merten, Chief Privacy Officer, Advocate Health LLC

Laura Merten is the Chief Privacy Officer and Interim Chief Compliance Officer at Advocate Health Care.  Advocate is the largest health system in Illinois.  It offers nearly 400 sites of care, with 12 acute-care hospitals, including a children’s hospital, and has the state’s largest physician network of primary care physicians, specialists and sub-specialists.

Laura has a B.S. degree in Finance and General Management from Purdue University, a law degree from the University of Illinois at Champaign-Urbana and a LLM in Taxation from DePaul University.  She previously held positions as head of the Health Law and Loss Prevention Divisions at Walgreens.  She is a Certified Compliance and Ethics Professional through SCCE and was a speaker at the HCCA Annual Meeting in March 2017 on risk analyses for breach determinations under HIPAA.


Gregory J.  Ehardt, JD | VP, Chief Compliance and Privacy Officer, CHRISTUS Health

Greg is the Vice President and Chief Compliance and Privacy Officer at CHRISTUS Health, an International non-profit Health Care Organization with locations in the US as well as Chile, Colombia, and Mexico. Greg is an attorney with more than 15 years of health care experience, providing legal services to a large range of health care companies and business associates across multiple countries. Greg spent time as the Administrator of a hospital, surgery center, and physician clinics.