HIM 220 Module One Journal FINAL
docx
keyboard_arrow_up
School
Southern New Hampshire University *
*We aren’t endorsed by this school
Course
220
Subject
Information Systems
Date
Apr 3, 2024
Type
docx
Pages
4
Uploaded by GrandStar5235
SECURITY MEASURES
1
1-2 Journal: Security Measures
Jill Farrington
Southern New Hampshire University
SECURITY MEASURES
2
1-2 Journal: Security Measures
Healthcare professionals have a crucial responsibility in protecting sensitive health information, as emphasized by Sayles et al. in 2021. HIPAA compliance is vital to maintain the confidentiality of patients' protected health information and other sensitive data. Healthcare facilities must prioritize the implementation of administrative, physical, and technical safeguards
to prevent unauthorized access to this information. (Gross, 2023)
Security Measure Choices
Employees in healthcare can use staff training, access controls, audit controls, and contingency plans to protect sensitive information. Staff training is vital to ensure PHI is secure. Access controls and authentication systems prevent unauthorized access and use of protected information. Audit controls monitor implemented security programs. Contingency plans are essential to prepare for the worst scenarios like ransomware attacks, data theft, exposure, or data destruction. These plans should include procedures for data backup and recovery, regular testing and revision, analysis of application and data criticality, and emergency mode operation. Security Measure Rationale
To ensure the security of sensitive information, train employees to identify threats and cyberattacks, protect data, follow HIPAA privacy and security rules, and understand the consequences of violating these rules. Access to protected health information (PHI) should only be granted to authorized employees through unique usernames, password encryption, one/two-
factor authentication, and control levels. (admin, 2022) Audit trails can track who accesses information and trigger inspections when unauthorized access is detected. Contingency plans should be in place to ensure access to critical information during emergencies like breaches or system crashes. Installing antivirus software can help prevent cyber-attacks, ransomware,
SECURITY MEASURES
3
spyware, and other malware. Using plain and direct language ensures that employees can easily follow these guidelines and protect sensitive information.
Importance of Data Security
Data security is crucial in the healthcare industry to protect patient's personal health information and comply with HIPAA regulations. (
Dedicated Quality Assurance
, n.d.) In the past, patient information was stored on paper in locked cabinets. Today, electronic systems are used which are vulnerable to breaches and other malicious attacks. Healthcare facilities must implement data security measures to secure patients' electronic health data from risks such as identity theft and discrimination. The security solutions should be tailored to the specific needs of the facility and take into account potential risk factors such as outdated systems, unsecured networks, lack of training, lack of authentication, and creation of strong passwords. To ensure clear communication, the text should use simple and familiar language, direct and concise sentences, and active voice. Different audiences have different needs, and require different information, so the text should consider the target audience and present the most important information first.
Role-Based Access
When communicating in Plain English, it is imperative always to keep the intended audience in mind. It is essential to provide information that is tailored to their individual needs. First, focus on conveying pertinent details while keeping sentences concise and straightforward. Using elaborate or intricate sentences can lead to confusion and distract from the central message. It is advisable to avoid using technical jargon or legal terminology instead of opting for
everyday language. Choosing verbs over nouns can enhance clarity, with active voice helping to
Your preview ends here
Eager to read complete document? Join bartleby learn and gain access to the full version
- Access to all documents
- Unlimited textbook solutions
- 24/7 expert homework help
SECURITY MEASURES
4
identify the action taker. Above all, ensure the text retains its original meaning without omitting critical details.
Conclusion
When sharing information, it is important to consider the audience and their needs. Different audiences require different information. To protect patient's sensitive information, security measures such as staff training, audit controls, access controls, and authentication should
be put in place. Additionally, having a contingency plan in case of a disaster and installing antivirus software can help prevent viruses and ensure customer trust. Plain English favors simple, familiar words and short, direct sentences to aid in clarity. References
admin. (2022, December 28). Is onedrive hipaa compliant without violating the business rules?
Https://Mytechfreaks.com. https://mytechfreaks.com/is-onedrive-hipaa-compliant-
without-violating-the-business-rules/
Dedicated Quality Assurance
. (n.d.). Osplabs. Retrieved September 2, 2023, from https://www.osplabs.com/dedicated-quality-assurance/
Gross, A. (2023, March 28). HIPAA Legal Reminder
. HIPAA Secure Now! https://www.hipaasecurenow.com/hipaa-legal-reminder/