Accession Number:

ADA621875

Title:

Rethinking Risk Management

Descriptive Note:

Briefing charts

Corporate Author:

CARNEGIE-MELLON UNIV PITTSBURGH PA SOFTWARE ENGINEERING INST

Report Date:

2004-01-01

Pagination or Media Count:

20.0

Abstract:

HIPAA Data Security. The Health Insurance Portability and Accountability Act HIPAA of 1996 establishes a standard of due care for data security in healthcare organizations. The regulation requires each healthcare organization to conduct a security risk assessment to ensure that its security program effectively mitigates its risk. Key Questions Do state-of-the-practice risk assessments accurately characterize the security risk confronting healthcare organizations Are some risks overlooked by state-of-the-practice risk assessments

Subject Categories:

  • Administration and Management
  • Operations Research
  • Safety Engineering

Distribution Statement:

APPROVED FOR PUBLIC RELEASE