What are the essential elements of a risk assessment reports

Reference no: EM131863632

Assignment

Background and Reference Material

The National Institute of Standards and Technology (NIST) sets standards for the United States, and especially for the Federal government. The Federal Information Security Management Act of 2002 ("FISMA") required risk-based management of security for Federal information systems. NIST produced a Guide for Conducting Risk Assessmentsin 2002 that was revised in 2012.

Although the PDF document is about 100 pages, there are only 38 pages in the guide proper. You will need to review at least a few of the appendices for this assignment in addition to reading the Guide.

You can find more background material with Google and especially Good Scholar. Please note that you can set a date range with Google Scholar, and so get only material published after the rule changes were announced. Try to find at least one publication that is a peer-reviewed scientific journal.

Questions to answer:

1. What was the target audience of this document, and how does it apply to health care institutions? To vendors of health care information technology?

2. What are the key concepts of risk, risk assessment, risk management, and risk communication?

3. What are the essential elements of a risk assessment reports?

4. Appendix D of the Guide divides threat sources into categories of adversarial, accidental, structural, and environmental. Based on your reading to date, which category to you believe represents the biggest danger to health information technology? Support your choice with arguments from the Guide and at least one other source.

Submission requirements:

1. Times New Roman, 12 font size, Double-space, Margin 1". No more than 4 pages not counting the "Works Cited" page.

2. Be sure to have in-text citation, and Works Cited page. You can use Google Scholar or other online citation generation tools to generate citation in MLA format.

Reference no: EM131863632

Questions Cloud

Component of quality-improvement programs in healthcare : Why is a risk-management program an important component of quality-improvement programs in healthcare?

Contrast healthcare errors and seminal events : Compare and contrast healthcare errors and seminal events. How are they similar and how are they different?

What annual interest rate does this account offer : A financial institution offers a "double-your-money" savings account in which you will have $2 in 10 years for every dollar you invest today.

What was marx theory of history : Why were the working classes dissatisfied with the prevailing economic system? What was Marx's theory of history

What are the essential elements of a risk assessment reports : What are the key concepts of risk, risk assessment, risk management, and risk communication? What are the essential elements of a risk assessment reports?

What is the importance of enterprise modeling : 1. What is the importance of enterprise modeling? 2. How does modeling overlap with OO programming concepts / methodologies?

How many years will it take to reach your goal : You have $50,000 in savings for retirement in an investment earning 11% annually. You aspire to have $1,000,000 in savings when you retire.

Would you like to work for a manager like joe maddon : What is there to learn about how to be a good manager in a business organization based on studying coaches from the sports industry?

Examples of penalties that organizations induce : Give three examples of penalties that organizations induce when they fail to comply with government mandates such as OSHA or EEO.

User Account

All Pages