Instructions Before completing this assignment, be sure you read what an AUDIT TRAIL is in your textbook. Since the HIPAA privacy rules was implemented,

Instructions

Before completing this assignment, be sure you read what an AUDIT TRAIL is in your textbook.

Since the HIPAA privacy rules was implemented, you have been drowning in your audit trails reviews. You have finally obtained permission from administration to develop and use triggers to help with the review. These triggers, although not eliminating the review of audit trails, can be used to identify potential unauthorized access much more quickly and easily than using a manual review. Now that you finally have approval, you have to develop the triggers to be used. Administration wants to review your proposed triggers before they are implemented. Identify 10 triggers that you will present to administration for approval. Please be specific.

HINT: You might have pages and pages of the audit trail report. You are trying to get the computer system to do some of the work for you. What would look like highly suspicious activity of someone trying to access information that they shouldn’t? What if someone tried to log in more than 10 times and was not able to (or was able to). This might look like someone trying to access the system that shouldn’t. This would be something you would want to investigate. This would be a good trigger for the system to automatically flag. So your trigger would be any log in attempts that were greater than 10 (or you might want it to be a lower threshold).

SUBMIT AS A WORD DOCUMENT

Adapted from: McCuen, C., Sayles, N. B., & Schnering, P. (2018). Case studies in health information management. Boston, MA: Cengage Learning.

AuditControls (45 CFR 164.312(b)) 

Section 3: Technical Safeguards | 127 Audit controls (no implementation specifications) require installation of hardware, in systems containing software, or manual mechanisms to examine and record activity in ePHI.Audit controls occur at the back end, after activity has occurred, rather than preventatively. One type of audit control is the audit trail, a feature that records user activity such as accessor access attempts in a computer system. Although retrospective, it can provide valuable metadata (data about data) including who accessed (or attempted to access) the system, which part or parts of the system were affected, when the access occurred, what operations occurred (such as create, view, print, edit), and when data were sent and received.This metadata can be used for investigations (andpotential disciplinary actions), breachnotification, and other mitigation efforts (Rinehart-Thompson 2011). The Security hree does not mandatewhat informationmust be collected in an audit report or how equently audit reports must be generated and reviewed. Intrusion detection systems alyzenetwork traffic,sendingan alarm if they detect potentially inappropriate attempts to acessthe network or a particular account. This systemcannot operate independently. butrequires humans to monitor alarms and determinewhether or not they are valid. An organization’s characteristics, as well as findings from a risk analysis, should determine what the reasonable and appropriate audit controls Although the audit are (HHS 2007c). control’s standard addresses the examination and recording of activity that is occurring or has occurred in systems containing ePHI, there are other mechanisms that can preventatively identify abnormal conditions in an electronic system. Intrusion prevention systems identify inappropriate traffic, blocking passage in much the same way as a firewall, which provides a security barrier between an internal trusted network and outside electronic traffic. Like the intrusion detection system, this system also requires humans to monitor alarms and determine whether or not they are valid (Rinehart-Thompson 2011). Systems can also be set up to respond preventatively to an established threshold ofinvalid log-on attempts (use of an incorrect user name or password) to a particular account. After the established number of attempts is reached, additional attempts are prohibited of through time that an account has been lockout. programmed The account lockout may continue for a specified period manually unlocks it into the system or until the network administrator

Share This Post

Email
WhatsApp
Facebook
Twitter
LinkedIn
Pinterest
Reddit

Order a Similar Paper and get 15% Discount on your First Order

Related Questions

Week 9 Assignment: Community-Based Research Project Proposal 250 Points PossibleInstructions In this assignment, you will design a research study that in

Week 9 Assignment: Community-Based Research Project Proposal 250 Points PossibleInstructions In this assignment, you will design a research study that incorporates anti-oppressive principles and methods. You will demonstrate understanding of how research can be conducted in a way that challenges inherent biases, promotes anti-racist and anti-oppressive strategies, and advances social work

Description You are currently working as an intern with the chief executive officer (CEO) of a large health system that includes inpatient facilities and

Description You are currently working as an intern with the chief executive officer (CEO) of a large health system that includes inpatient facilities and ambulatory services, including the following: Clinics Emergency room services Outpatient services The organization accepts the following: Government payers Commercial payers Managed care Private pay The CEO

The landscape of healthcare delivery is constantly evolving due to changes in population needs, technology, and policy reforms. Discuss various

The landscape of healthcare delivery is constantly evolving due to changes in population needs, technology, and policy reforms. Discuss various healthcare delivery models (e.g., patient-centered care, value-based care, integrated care models) and their potential to improve healthcare outcomes. (CSLO #4) Consider the following: How do these models promote efficiency, cost-effectiveness,

The landscape of healthcare delivery is constantly evolving due to changes in population needs, technology, and policy reforms. Discuss various

The landscape of healthcare delivery is constantly evolving due to changes in population needs, technology, and policy reforms. Discuss various healthcare delivery models (e.g., patient-centered care, value-based care, integrated care models) and their potential to improve healthcare outcomes. (CSLO #4) Consider the following: How do these models promote efficiency, cost-effectiveness,

Here’s a rundown of the basic requirements needed:  The disease is Human metapneumovirus Your paper will be covering the Pathophysiology of the disease

Here’s a rundown of the basic requirements needed:  The disease is Human metapneumovirus Your paper will be covering the Pathophysiology of the disease process, which includes: etiology, pathogenesis, clinical manifestations, how the disease is diagnosed, current treatments, including drugs (brand name or generic) contraindications or possible side effects of those drugs, expected

National Health Coverage Plans Instructions Examine the relationship between healthcare coverage (insurance), quality care, and reimbursements (payments)

National Health Coverage Plans Instructions Examine the relationship between healthcare coverage (insurance), quality care, and reimbursements (payments) to healthcare organizations. Select two major U.S. national insurance health plans (e.g., Medicaid, Medicare, HMO, PPO, or private insurance plans). You may choose your personal insurance plan if preferred. Review how each plan

Week 6 Discussion: Continue Your DiscussionSampling Using an Anti-Oppressive Research Lens In Week 6, our focus is on study sampling and measuring

Week 6 Discussion: Continue Your DiscussionSampling Using an Anti-Oppressive Research Lens In Week 6, our focus is on study sampling and measuring variables. You revisited research regarding how sample populations are predominantly Western, Educated, Industrialized, Rich, Democratic (WEIRD) and how to use an anti-oppressive lens to challenge and dismantle systems