Case Study 2: HIPAA and IT Audits
Due Week 7 and worth 125 points
Imagine you are the Information Security Officer at a medium-sized hospital chain. The CEO and the other senior leadership of the company want to ensure that all of their hospitals are and remain HIPAA compliant. They are concerned about the HIPAA Security and Privacy Rules and its impact on the organization. You begin looking at the information provided by the Department of Health and Human Services, located at http://www.hhs.gov/ocr/privacy/hipaa/enforcement/index.html. Specifically, you are asked to provide an analysis of two (2) of the cases found here with emphasis on what was done to resolve the compliance issues.
Section 1. Written Paper
Non-compliance with HIPAA regulations can result in significant fines and negative publicity. To help ensure that your organization remains in compliance with HIPAA regulations you have been asked to write a three to five (3-5) page paper in which you:
Due Week 7 and worth 125 points
Imagine you are the Information Security Officer at a medium-sized hospital chain. The CEO and the other senior leadership of the company want to ensure that all of their hospitals are and remain HIPAA compliant. They are concerned about the HIPAA Security and Privacy Rules and its impact on the organization. You begin looking at the information provided by the Department of Health and Human Services, located at http://www.hhs.gov/ocr/privacy/hipaa/enforcement/index.html. Specifically, you are asked to provide an analysis of two (2) of the cases found here with emphasis on what was done to resolve the compliance issues.
Section 1. Written Paper
Non-compliance with HIPAA regulations can result in significant fines and negative publicity. To help ensure that your organization remains in compliance with HIPAA regulations you have been asked to write a three to five (3-5) page paper in which you:
1a. Create an overview of the HIPAA Security Rule and Privacy Rule.
1b. Analyze the major types of incidents and breaches that occur based on the cases reported.
1b. Analyze the major types of incidents and breaches that occur based on the cases reported.
1c. Analyze the technical controls and the non-technical controls that are needed to mitigate the identified risks and vulnerabilities.
1d. Analyze and describe the network architecture that is needed within an organization, including a medium-sized hospital, in order to be compliant with HIPAA regulations.
1e. Analyze how a hospital is similar to and different from other organizations in regards to HIPAA compliance.
1f. List the IT audit steps that need to be included in the organization’s overall IT audit plan to ensure compliance with HIPAA rules and regulations.
1g. Use at least three (3) quality resources in this assignment. Note: Wikipedia and similar Websites do not qualify as quality resources.
Your assignment must follow these formatting requirements:
CIS 558 Week 7 Case Study 2, HCA 210 Complete class, HRM 420 Complete Course, HRM 530 Complete Assignments, MGT 431 Entire Course, MGT 437 Complete Course, MGT 500 Week 3 Assignment 1, MKT 500 Assignment 2 Part B Your Marketing Plan, PHL 458 Complete Class, PSY 322 Complete Class, PSY 390 Complete Class, HSA 505 Week 3 Assignment 1, HSA 505 Assignment 1, CIS 515 Week 6 Assignment 5, CIS 515 Assignment 5, HSA 510 Week 10. ECE 430 Week 2 Journal, ECE 430 Week 2 Discussion, ECE 430 Week 3 Discussion, ECE 430 WEEK 3 JOURNAL, ECE 430 Week 4 Assignment Informal Assessment Presentation, ECE 430 Week 4 Assignment, ECE 430 Week 4 Discussion, CIS 599 Week 11 Discussion 1, ECE 430 FINAL PROJECT, ECE 430 Week 5 Discussion, CIS 512 Week 8 Discussion, CIS 512 Week 9 Discussion, CIS 505 Week 3 Discussion, CIS 505 Week 3 Discussion 1, CIS 505 Week 3 Discussion 2, CIS 505 Week 8 Assignment 4, CIS 505 Assignment 4, CIS 505 Week 8 Discussion
No comments:
Post a Comment
Note: only a member of this blog may post a comment.