Patient data is used in a variety of contexts by health care providers and organizations so continuous monitoring of user access to authorized parts of patient information is vital to securing this PHI and ensuring confidentiality.
computer science
Description
Application: Information Security Policy Document – Classification of Assets and Access Control Sections
Patient data is used in a variety of contexts by health care providers and organizations so continuous monitoring of user access to authorized parts of patient information is vital to securing this PHI and ensuring confidentiality. An example of how vulnerable patient information can be is outlined in the General Hospital Security Disaster Case Study which you should read in detail. As you will see from reading the case study, General Hospital is in desperate need of an Information Security (InfoSec) Document which you have been hired to create for the hospital.
Last week we looked at security policy and legislative requirements of info security and this week we are focusing on Classification of Assets and Access Control.
To prepare for this Application Assignment, review the assigned readings, and the case study, and write a 2- to 4-page paper that describes the classification of assets and access control section for GH’s InfoSec Security Policy Document. You should include an introductory section outlining the security issues in the case study that your recommendations will address and how they will help mitigate these concerns moving forward for General Hospital. This introductory section should be no more than 1 page in length. The cover and reference pages do not count towards the required page length for the assignment.
