Reference no: EM133437646
You have been hired as the director of HIT for a new medium healthcare facility. As part of your role, you are tasked with creating a security plan that evaluates how you would approach security threats from both inside and outside the organization. You will send a memo to the chief security officer sharing your recommendations on the following items:
1. Critique the current state of the healthcare facility by identifying three potential risks to ePHI that were discovered when you completed a risk assessment.
2. Recommend three physical safeguards (i.e., workstation access, facility access, device and media controls)
3. Recommend three administrative safeguards (i.e., employee education, contingency planning, security incident procedures, how and who you would communicate with in the event of a crisis)
4. Recommend three technical safeguards (i.e., access control, audit controls, cloud computing, firewalls, encryption/decryption)
5. Recommend three best practices to protect and secure information when using mobile devices.