A faculty of nationally recognized, fully credentialed experts guides attendees through HIPAA compliance and security risk analysis fundamentals while sharing key insights, hard won lessons learned and practical tools for Risk Analysis and Risk Management.

Bob Chaput, MA, CISSP, HCISPP, CRISC, CIPP/US | CEO & Founder, Clearwater Compliance

Over the past 35 years, Mr. Chaput has worked as an educator, an executive and an entrepreneur.   He has assisted businesses and individuals in developing highly secure information technology (IT) strategies that are tightly linked with their business strategies and goals.  Given world events, increasingly more stringent security, privacy and compliance regulations around safeguarding personal and healthcare information (PII and PHI) along with increased business dependency on technology, his passion and focus is in helping organizations establish, operationalize and mature their information risk management programs.

Jon Stone, MPA, PMP, HCISPP, CRISC | VP, Product Innovation

Jon StoneJon has a unique breadth of experience with a combined 25 years’ experience in healthcare, working in the provider, payer and healthcare quality improvement fields. For the last 15 years Jon has provided strategic leadership for compliance and healthcare technology projects involving the most sensitive ePHI for companies such as CIGNA, Healthways and Ingenix. In addition, he has done extensive consulting in process improvement for HIPAA, healthcare outcomes, business operations, the Systems Development Life Cycle and IT operations. He is Clearwater’s VP of Product Innovation, and helps provide HIPAA Security and Privacy SaaS (Software as a Service) for the healthcare industry.

Jon has a Master’s in Public Administration and Health Care Regulatory Policy. He is certified as a Project Management Professional and has a certification in Project Management for Information Systems from the University of Colorado.


Wes Morris

Wes has specialized in HIPAA Privacy and Security compliance for nearly 14 years, in positions ranging from hospital Privacy Officer to managing a team of health information specialists overseeing HIPAA compliance for the worldwide U.S. Air Force Medical System. Prior to joining Clearwater, Wes served as the Privacy Officer and Security subject matter expert supporting the Veteran’s Affairs’ Virtual Lifetime Electronic Records project, a presidentially mandated initiative to ensure veterans and military service members access to all records related to their service, medical care, and VA benefits. While

HIPAA compliance is his main focus, Wes also has extensive experience with the Federal Privacy Act of 1974, the Federal Confidentiality of Substance Abuse Records rules, and various state requirements related to Privacy, Security and Breach Notification.

Wes served in the U.S. Air Force for 22 years, primarily as a Mental Health Specialist and Substance Abuse Counselor – positions that gave him deep experience in managing sensitive records, training, public speaking, crisis management, social service, and clinical care.

Wes is certified through the American Health Information Management Association (AHIMA), holding the credential of Certified in Healthcare Privacy and Security (CHPS), a gold standard for healthcare privacy and security. Previously serving on the AHIMA Examination Development Committee for the CHPS examination, he recently began a new volunteer role as a member of the AHIMA Privacy and Security Practice Council, working to improve the industry’s understanding of privacy and security compliance needs and responsibilities. An inveterate learner, he has also completed the requirements for the Certified Information Privacy Manager (CIPM) and Health Care Information Security and Privacy Practitioner (HCISPP) credentials.

Erin Brisbay McMahon, Chief Compliance Officer & Senior Director, Legal

Erin Brisbay McMahon, an attorney since 1991*, has focused for the last 20 years on healthcare law and HIPAA regulations and compliance.

Before coming to Clearwater, McMahon served as Data Privacy Counsel for Conduent, one of the world’s largest providers of diversified business process services.

For over a decade, McMahon was a partner in the law firm of Wyatt, Tarrant & Combs, LLP, serving on the Health Care Service Team.  She concentrated her practice in the areas of healthcare and corporate law and regularly counseled clients on HIPAA privacy and security compliance.  She also assisted clients with OCR enforcement actions.  She worked closely with health care facilities, physician practices and physicians in negotiating employment agreements and advising on non-competition issues.  She formed numerous business entities, and advised start-up and existing businesses on a variety of issues, including health care compliance, health insurance and managed care, employment, contracting, corporate structuring, and litigation issues.  McMahon also participated in certificate of need cases.

An accomplished writer, McMahon has authored more than 25 healthcare-related articles and book chapters that have been published since 2000.  She is a frequent speaker, having given over 80 presentations in her career.  She has served as President of the Fayette County (Kentucky) Bar Association, and has been listed in Woodward/White’s Best Lawyers in America® from 2011-17 in the area of health care.  She also served as a law clerk to the Honorable Jennifer B. Coffman, Retired Chief Judge for United States District Court for the Eastern District of Kentucky.

McMahon obtained her Juris Doctor from the College of William and Mary Law School, where she served on the William & Mary Law Review.  She earned her BA in political science and history, summa cum laude, from Transylvania University.  She has taught health law at the University of Kentucky College of Law and Business Law at Transylvania University.