User Account

All Pages

Developing a security management plan

Assignment Help Management Information Sys
Reference no: EM133670652 , Length: 4 Pages

Assignment Content

As the CISO for a health care organization, you are tasked with:

  • Choosing a risk management framework and associated systemic process that measures and evaluates risks that may impact the organization's assets and data
  • Developing a security management plan that is aligned to the health care organization's goals and objectives

The goals are:

  • Patient Satisfaction: Patient satisfaction is the foundational strategy by which the health care organization will attain its mission. It encompasses patient outcomes, compliance scores, and patient and visitor experiences within the health care organization.
  • Increase Revenue: Providing excellent care requires money. The health care organization seeks to maximize revenue wherever ethically possible through a strategy that captures, retains, and grows revenue.
  • Maximize Operational Efficiencies: Maximizing operational efficiencies helps the health care organization get the most value out of each dollar of revenue. Efficient operations also directly affect the patient experience and overall patient and visitor satisfaction.
  • Gain positive returns on capital investments.
  • Ensure that new initiatives show a tangible return on investment (ROI).

The objectives are:

  • Leverage assets and resources for centralizing and automating processes.
  • Reduce the total cost of ownership (TCO) with respect to the IT infrastructure and IT systems.
  • Improve the security of IT systems in order to protect the confidentiality, integrity, and availability of its data, assets, and systems.
  • Improve compliance with regulatory requirements, such as HIPAA, Food and Drug Administration (FDA), and Payment Card Industry Data Security Standard.

Part A

Develop a five to seven slide Microsoft® PowerPoint® presentation for the health care organization's senior leadership that recommends a risk management framework.

Address the following:

  • Define the chosen risk management framework for the organization to implement as part of its risk management program.
  • Illustrate the associated risk management processes.
  • Justify your choice for the risk management framework.
  • Provide references

Note: The chosen risk management framework will be included in the security management plan in Part B.

Part B

Develop a three to four page security management plan that documents the health care organization's information security governance and the risk management components of the enterprise information security program.

Include the following:

  • Description of the health care organization's security management program
  • Alignment of security objectives to the health care organization's goals and objectives
  • Information security governance major activities
  • Legal and regulatory compliance requirements
  • Corporate compliance and security roles and responsibilities (CEO, CFO, CIO, CISO)
  • Risk management framework and major processes
  • List of required information security policies
  • Provide references

Reference no: EM133670652

Questions Cloud

Explain what the proper moral choice should be : In 900 to 1200 words argumentative paper explaining what the proper moral choice should be. Shows that you are aware of opposing points of view.
What is rsv-bronchiolitis : What is RSV/Bronchiolitis. Signs and symptoms and actions. Risks and complications. When to go to ER.
Which one of the social episode was carl breaking : Carl was pleased that he was invited to a company party. Which one(s) of the Social Episode was Carl Breaking? Explain. List and explain the 5 Social Episodes.
What are potential areas of resistance to corrective actions : What are three potential areas of resistance to your recommended corrective actions, and what ameliorative suggestions can you offer to reduce such resistance?
Developing a security management plan : Developing a security management plan that is aligned to the health care organization's goals and objectives.
What are your thoughts on how the other phases of dmaic help : What are your thoughts on how the other phases of DMAIC help you understand what specific unwanted consequences you may need to control?
Develop a foreign policy doctrine to characterize : Develop a foreign policy doctrine to characterize their administration's primary foreign policy goal (Bush Doctrine, Monroe Doctrine, Truman Doctrine).
Importance of epidemiological data in healthcare planning : Explain the importance of epidemiological data in healthcare planning and policy development.
Discuss the portrayal of women in one or more of the stories : Discuss the portrayal of women in one or more of the stories we've read so far. Are they flat or round characters? Static or dynamic?

Reviews

Write a Review

Management Information Sys Questions & Answers

  Design a query that will allow the finance department

The sales department is the only department where employees are paid a commission in addition to their yearly salary and benefits.

  What is interoperability

HSA315: Articulate how health care managers and leaders can achieve better health for individuals and populations while managing cost.

  Write a two-page business report to the production manager

You are an intern at a manufacturing facility. Your boss, the production manager, has seen consumer surveys supporting drone delivery of small packages.

  Write research paper on protecting information resources

Write research paper on Protecting Information Resources

  How are authentication and authorization alike

How are authentication and authorization alike and how are they different? What is the relationship, if any, between the two?

  Network topologies and diagnostics

What topology would work best for this project and What network hardware will be needed to accomplish the networking project

  How will cyber security influence the next 10 years

How will cyber security influence the next 10 years?

  Describe about supply chain managment

Explain your approach to effecting a win-win negotiation with a potential long-term supplier for a specific product or service.

  Explain the importance of developing a systems and data plan

Explain the importance of developing a systems and data plan for an organization. What are the risks if you don't have those plans? You may utilize examples from your own organization or an organization you are familiar with to illustrate your an..

  What is the day-to-day job like

What was your career pathway (from education to current role)? What is the day-to-day job like? What kinds of professionals do you work with on a regular basis?

  What does it offer the information security professional

Using a Web browser, visit the site "honeynet". What is this Web site, and what does it offer the information security professional?

  Difference between system and application software

You have identified several companies that specialize in software for small businesses. Please write a "request for proposal" (RFP). To write an RFP, you need to identify the needs of the company. Begin by explaining the difference between system ..

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd