User Account

All Pages

How are you going to reduce your risk

Assignment Help Operation Management
Reference no: EM133441304

SCENARIO: A health care system executive left their work-issued laptop, which had access to over 40,000 medical records, in a locked car while running an errand. The car was broken into, and the laptop stolen. ATTACK: Physical theft of an unencrypted device. Encryption is the process of scrambling readable text so it can only be read by the person who has the decryption key. It creates an added layer of security for sensitive information. RESPONSE: The employee immediately reported the theft to the police and to the health care system's IT department who disabled the laptop's remote access and began monitoring activity. The laptop was equipped with security tools and password protection. Data stored on the hard drive was not encrypted - this included sensitive, personal patient data. The hospital had to follow state laws as they pertain to a data breach. The U.S. Department of Health and Human Services was also notified. Personally Identifiable Information (PII) and Protected Health Information (PHI) data require rigorous reporting processes and standards. After the theft and breach, the health care system began an extensive review of internal policies; they created a discipline procedure for employees who violate security standards. A thorough review of security measures with internal IT staff and ancillary IT vendors revealed vulnerabilities. IMPACT: The health care system spent over $200,000 in remediation, monitoring, and operational improvements. A data breach does impact a brand negatively and trust has to be rebuilt. LESSONS LEARNED: 1 Companies must establish and train employees on secure handling of work-issued devices. 2 Devices must be safely stored when not in the immediate presence of the employee. 3 Companies must take steps to encrypt data wherever it is stored or transmitted. Employees should have a clear understanding of the importance of encryption and how to use it. 4 Companies must understand and know their responsibilities under the data breach notification laws of the state(s) in which they operate. 5 A regular review of the company's security practices is imperative in modern organizations to prevent incidents, discover vulnerabilities, and to reduce impact of incidents.

Questions: DISCUSS:

• Knowing how the firm responded, what would you have done differently?

• What are some steps you think the firm could have taken to prevent this incident?

• Is your business susceptible to this kind of attack? How are you going to reduce your risk?

Reference no: EM133441304

Questions Cloud

How many pounds of cod are applied to aeration basin daily : If the COD concentration of the wastewater is 160 mg/L, how many pounds of COD are applied to the aeration basin daily?
How did crowdsourcing affect the customer experience : How did crowdsourcing affect the customer experience with the Coke brand? Why did such a simple action as putting a name on a Coke bottle/can have such an
Discuss the range of ethical-csr issues : Discuss the range of ethical/ CSR issues and unique challenges that food restaurant faces?
What is mexico city underlying lesson : According to book Daniel Hernandez Down and Delirious in Mexico city in Chapter 2(point of Arrival), what is Mexico City's "underlying lesson"?
How are you going to reduce your risk : What are some steps you think the firm could have taken to prevent this incident? Is your business susceptible to this kind of attack? How are you going
What are your thoughts on the various options employers : What are your thoughts on the various options employers can take? In your opinion, what do you believe is the best approach an employer should take when contest
Discuss a monopoly with a constant marginal cost : Consider a monopoly with a constant marginal cost of 10 that faces the following inverse demand function from senior citizens.
What would you do the staff associated in this situation : What would you do the staff associated in this situation? Why? What are the risks of telling the truth for you? What are the benefits? Explain.
Impact of the environment on the development of individuals : Humans are a product of their environment. Using two (2) of the following theories, discuss the impact of the environment on the development of individuals.

Reviews

Write a Review

Operation Management Questions & Answers

  Book review - the goal

Operations Management is about a book review. Title of the book is "Goal". This book has been written by Dr. Eliyahu Goldartt. The book has been appreciated by many as one of those books which offers an insight into the operations and strategic capac..

  Operational plan in hospitality enterprise

Operational plan pertaining to a hospitality enterprise is given in detail in the solution. The operational plan is an important plan or preparation which gives guidelines regarding the role and responsibilities of each and every operation at all lev..

  Managing operations and information

Recognise the importance of a strategic approach to the development and deployment of organisational information systems. Demonstrate an understanding of the importance of databases and their integration to the organisation's overall information mana..

  A make-or-buy analysis

An analysis of the holding costs, including the appropriate annual holding cost rate.

  Evolution and contributor of operations management

Briefly explain Evolution and contributor of Operations management.

  Functions and responsibilities of an operations manager

A number of drivers of change have transformed the roles, functions and responsibilities of an operations manager over recent years. These drivers have not only been based on technological innovations but also on the need for organisations to develop..

  Compute the optimal order quantity

Compute the Optimal Order quantity of DVD players. Determine the appropriate reorder point.

  Relationship to operations practice in the organisation

Evaluate problems in operations and identify approaches to overcoming them. Critically evaluate operating plans and identify areas for improvement. Justify, implement and evaluate changes to operations in line with modern approaches.

  A make or buy analysis

Develop a report for Figi Fabricating that will address the question of whether the company should continue to purchase the part from the supplier or begin to produce the part itself.

  Prepare a staffing plan

Prepare a staffing plan showing the change of your unit from medical/surgical staffing to oncology staffing.

  Leadership styles in different organizations

Ccompare the effectiveness of different leadership styles in different organizations

  Risk management tools and models

Be able to understand the concept of risk, roles and responsibilities for risk management and risk management tools and models.

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd