Culbert Healthcare – CHS Culbert Healthcare – CHS
  • SERVICES
    • CLINICAL OPERATIONS
    • MANAGEMENT CONSULTING
    • HEALTH IT
      • EPIC CONSULTING
      • ATHENAHEALTH & ATHENAIDX
      • ALLSCRIPTS CONSULTING
      • CERNER CONSULTING
  • MEDIA & EVENTS
    • CONFERENCES
    • WEBINARS
    • CASE STUDIES
    • NEWSLETTERS
  • CAREERS
    • AVAILABLE POSITIONS
    • BENEFITS
    • STAFF TESTIMONIALS
  • ABOUT
    • MANAGEMENT TEAM
    • COMPANY MEETING & PRESIDENTS CLUB
  • BLOG
  • CONTACT
Culbert Healthcare – CHS Culbert Healthcare – CHS
  • SERVICES
    • CLINICAL OPERATIONS
    • MANAGEMENT CONSULTING
    • HEALTH IT
      • EPIC CONSULTING
      • ATHENAHEALTH & ATHENAIDX
      • ALLSCRIPTS CONSULTING
      • CERNER CONSULTING
  • MEDIA & EVENTS
    • CONFERENCES
    • WEBINARS
    • CASE STUDIES
    • NEWSLETTERS
  • CAREERS
    • AVAILABLE POSITIONS
    • BENEFITS
    • STAFF TESTIMONIALS
  • ABOUT
    • MANAGEMENT TEAM
    • COMPANY MEETING & PRESIDENTS CLUB
  • BLOG
  • CONTACT
May 16

Epic Security Optimization: Collaboration is Key

  • May 16, 2019
  • Angie Hein
  • Epic Security

Regardless of whether your organization has been live on Epic for years or has just recently implemented, security tends to be a burning topic.  Even with thorough testing, it is difficult to get it right on the first try given the hundreds of security points available for each security class in Epic.  Most of Epic’s functionality is enabled or blocked by the Standard ECL Security Class and Point Model.  ECL is the Epic Database that holds all Security Class records.  One security class record can be shared with any number of users and each record is linked to a specific application, such as Ambulatory, Cadence, or Resolute Professional Billing.  Most users require multiple ECL records to cover when job necessary features belong to different applications.  Security Points grant access to a specific feature.  Points are either standalone items in the class record or category values within a single large list item.  Some points are more complex than a simple yes or no answer and require detailed research and testing to ensure set up is accurate.

Walking in and taking over existing build is often more difficult than starting from scratch.    Aside from inheriting problematic build, you may also inherit stigmas that end-users may have developed.  As frustrating as it may be to deal with those stigmas, it provides an excellent opportunity to redefine your relationship with the end-users.

In several recent engagements, Culbert was assigned to provide lead analyst support of security for organizations that had been on Epic for several years.    After digging into user security and conducting Chronicles searches, we quickly identified disorganization within user templates to the extent that individuals with the same job description and function were assigned to considerably different access roles.  This was the result of security related help desk tickets being resolved in a ‘one-off’ manner and in most cases because operations did not fully understand security build in Epic.  In order to streamline security set up, security roles should have a 1-to-1 relationship with job descriptions and/or functions.  One by one we evaluated the existing security templates and selected the job title that was the most scattered and started to map out what a consolidated template would look like.  We started with Resolute Professional Billing because there were 5 different security classes for what appeared to be a single job function. In order to determine which was the most accurate, we needed input from the operational managers.

When we engaged the operational managers to describe the scope and solicit feedback, their initial response was less than enthusiastic. They were concerned that changes would only make things worse, and while existing setup was clunky at best, it did allow them to get their work done.  We knew that a new consolidated template would make things more efficient for everyone, but we needed operational buy in to move forward.  We began by providing the operational managers with a deep dive into how security works in Epic.  This gave them a greater understanding of templates, security classes and even individual security points.  Once the managers understood templates and security classes it gave us a common ground to work from.  We shared an export of all the available security points for us to review together in order to develop security templates that aligned with Epic best practice and met the needs of the individual users.  We ended up with 2 Resolute Professional Billing security templates, one of which allowed more advanced users with additional security points than entry level users.

By taking the time to thoroughly explain what we were trying to do and including the managers in the planning process, we were able to turn the project into a positive experience for everyone.  This further created a long-term collaborative working relationship between IT and operations, making day-to-day resolution of issues more efficient and effective.  If you’d like to learn more about Culbert and how we can help you with your Epic Security Optimization , please let us know.   sales@culberthealth.com

  • Facebook
  • Twitter
  • Tumblr
  • Pinterest
  • Google+
  • LinkedIn
  • E-Mail

About The Author

Related Posts

Comments are closed.

Recent Posts

  • 21st Century Cures Act Requirements for Providers – Revised Compliance Dates and Why This Matters
  • Information Blocking Delay-We Can Help you Prepare for April 2021
  • Improve Revenue by Optimizing Coding Performance
  • Work Claim Denials More Efficiently Using Owning Areas: Epic Resolute Hospital Billing
  • Why Now is a Good Time to Shift Your Focus

Recent Comments

    Archives

    • November 2020
    • October 2020
    • September 2020
    • June 2020
    • May 2020
    • April 2020
    • March 2020
    • September 2019
    • August 2019
    • July 2019
    • June 2019
    • May 2019
    • March 2019
    • January 2019
    • December 2018
    • November 2018
    • October 2018
    • September 2018
    • August 2018
    • July 2018
    • June 2018
    • May 2018
    • April 2018
    • March 2018
    • February 2018
    • November 2017
    • October 2017
    • September 2017
    • August 2017
    • June 2017
    • May 2017
    • April 2017
    • March 2017
    • February 2017
    • January 2017
    • December 2016
    • November 2016
    • October 2016
    • September 2016
    • August 2016
    • July 2016
    • June 2016
    • May 2016
    • April 2016
    • March 2016
    • February 2016
    • January 2016
    • December 2015
    • November 2015
    • October 2015
    • September 2015
    • August 2015
    • July 2015
    • June 2015
    • May 2015
    • April 2015
    • March 2015
    • February 2015
    • January 2015
    • December 2014
    • November 2014
    • October 2014
    • September 2014
    • August 2014
    • July 2014
    • June 2014
    • May 2014
    • April 2014
    • March 2014
    • February 2014
    • January 2014
    • December 2013
    • November 2013
    • October 2013
    • September 2013
    • July 2013
    • June 2013
    • May 2013
    • April 2013
    • March 2013
    • February 2013
    • January 2013
    • December 2012
    • November 2012
    • October 2012

    Categories

    • 21st Century Cures Act
    • Allscripts
    • athenahealth
    • Clinical Operations
    • CMS Quality Payment Program-MIPS Path
    • Coding
    • Consumerism
    • COVID-19 Resources
    • EHR
    • EHR Integration
    • EHR Optimization
    • Epic
    • Epic Connect
    • Epic Reporting
    • Epic Security
    • GE
    • GE Centricity
    • ICD-10
    • Information Blocking
    • IT
    • MACRA
    • Management Consulting
    • Meaningful Use
    • Patient Access
    • patient experience
    • patient satisfaction
    • process improvement
    • Revenue Cycle
    • Strategy & Executive Leadership
    • Telehealth
    • Tom Dubeck-Stuff You Wish You Had Learned in Epic Certification
    • Training
    • Uncategorized

    Meta

    • Log in
    • Entries feed
    • Comments feed
    • WordPress.org
    Connect with Culbert
    call us at 781.935.1002 info@culberthealth.com
    800 West Cummings Park Suite 6000 Woburn, MA 01801
    2020 Culbert Healthcare Solutions