User Account

All Pages

Explain any major risk in the it systems components

Assignment Help Other Subject
Reference no: EM132370821 , Length: word count : 1250

Your report should be no more than 5 pages excluding the cover page, table of contents and references.

Part One

Plan, Develop and Manage a Security Policy

Background:

Consider that the Commonwealth Government of Australia is planning to launch ‘My Health Record' a secure online summary of an individual's health information. The system is available to all Australians, My Health Record is an electronic summary of an individual's key health information, drawn from their existing records and is designed to be integrated into existing local clinical systems.

The ‘My Health Record' is driven by the need for the Health Industry to continue a process of reform to drive efficiencies into the health care system, improve the quality of patient care, whilst reducing several issues that were apparent from the lack of important information that is shared about patients e.g. reducing the rate of hospital admissions due to issues with prescribed medications. This reform is critical to address the escalating costs of healthcare that become unsustainable in the medium to long term.

Individuals will control what goes into their My Health Record, and who is allowed to access it. An individual's My Health Record allows them and their doctors, hospitals and other healthcare providers to view and share the individual's health information to provide the best possible care.

The 'My Health Record' is used by various staff such as System Administrator, Doctor, Nurse, Pathologist and Patient. In order to convey and demonstrate the rules and regulations to the users of this system, Commonwealth Government of Australia needs a security policy.

You are employed as the Security Advisor for the organisation. The task that is handed to you by the Chief Information Officer now is to create, develop and manage "System Access Security Policy" foratleast any 3 users of the system.

Complete the following in your security policy:

• Plan System Access Security Policy

• Develop System Access Security Policy

• Manage System Access Security Policy

Part Two Conducting a Risk Assessment

You will be given a list of organisation in week 3 by your lecturer and you can select any one organisation from them. The organisation uses various IT systems for its daily operations. Assume that you are appointed as an IT Systems Auditor for the chosen organisation and you are asked to provide a risk register must come up for the IT systems in the organisation.

• A brief introduction of the organisation and the IT systems

• Identify and explain any major risk in the IT systems components

• Discuss the consequences of the risk

• Inherent risk assessment, that is the assessed, raw/ untreated risk inherent in a process or activity without doing anything to reduce the likelihood or consequence

• Mitigate the risk

• Residual risk assessment, that is the assessed, risk in a process or activity in terms of likelihood and consequence after controls are applied to mitigate the risk.

• Create a Risk Register based on the risks identified in the IT systems and prioritise of the risk using a standardised framework such as the ANSI B11.0.TR3 Risk Assessment Matrix.

Given the fact there is no clear prioritisation framework NOR risk appetite framework, the risk register is your professional assessment of the likelihood and consequence of the risks you identify. When preparing your risk register you should think carefully about the assets the chosen organisation may have and how these may be compromised from the perspective of Information Security.

Reference no: EM132370821

Questions Cloud

What is the concept of globally right source : What is the concept of Globally Right source and how can an organization use this to add value to their activities to increase their competitive positions?
How expectation and activities will help you gain competence : After reviewing the Agency Activities and Field Course Assignments, describe how these expectations and activities will help you gain competence in ethical.
What are some of the legal issues a company : What are some of the legal issues a company face when creating a strategic plan?
Risk-neutral and risk-seeking : Provide examples of real organizations that represent each level of risk tolerance: risk-averse, risk-neutral and risk-seeking.
Explain any major risk in the it systems components : Create a Risk Register based on the risks identified in the IT systems and prioritise of the risk using a standardised framework.
Why do most people use the services of intermediaries : Why do most people use the services of Intermediaries as opposed to direct finance?
What is the difference between the two : What is the difference between the two? Can you please provide examples of each? Which one would you recommend as a manager? Why?
What are the similarities between paley watch and universe : What are the relevant similarities and differences between Paley's watch and the universe? Is the watch analogy a good one? Why or Why not?
Cooperate information factory and business dimensional : What is the difference when conduct the ETL with Cooperate information factory and business dimensional lifecycle?

Reviews

Write a Review

Other Subject Questions & Answers

  Fracture of the end of the thigh bone

The patient was in a car accident and has a fracture of the end of the thigh bone that is closer to the knee. The fracture is fragmented into pieces and part of the bone is protruding through the skin. Give the name of the fracture and the location

  Research and analyze the alternatives for k-12

Complete the following seven steps in order, using the spaces provided in this document. You will submit your completed College Education .

  Write a description of a food memory

Write a description of a food memory, preferably from your childhood.Is this a food that unique to your culture? What are its traditional names?

  What does it mean for social capital

What does it mean for social capital to be both an individual and collective good?

  Forecast a scenario where this risk might be realized

Differentiate between the 3 tenets to indicate how this security breach impacts the hospital’s ability to secure their information.

  What is the current bond price

Your firm issued 15-year bonds one year ago at a coupon rate of 7%. The bonds make annual payments. If the YTM is 7.5%, what is the current bond price?

  Discuss any of the causes of organizational conflict

Discuss any of the causes of organizational conflict(s). Then discuss how best to handle the issues of the conflict(s) that you chose.

  Also keep in mind that gc by itself is only a separation

a gas chromatogram of a sample shows several peaks that appear very close to each other. how would you determine that

  Utilizing the youtube videos and the scholarly journal

utilizing the youtube videos and the scholarly journal articles listed in your assigned readings provide an argument

  Define the u.s. economy would grow more rapidly

In early 2013, economists predicted that the U.S. economy would grow more rapidly than had been predicted

  Create an agenda for new employee orientation

Create an agenda for New Employee Orientation at Southwood School. The orientation should last one full day. The new employee will meet with representatives from: HR, Finance, Information Technology and the school administrator

  Cohesiveness with effective communication skills

Improve Relationships and Unit Cohesiveness with Effective Communication Skills

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd