E-Book, Englisch, 392 Seiten
Reihe: (ISC)2 Press
Hernandez Official (ISC)2 Guide to the HCISPP CBK
1. Auflage 2014
ISBN: 978-1-4822-6278-0
Verlag: Taylor & Francis
Format: PDF
Kopierschutz: Adobe DRM (»Systemvoraussetzungen)
E-Book, Englisch, 392 Seiten
Reihe: (ISC)2 Press
ISBN: 978-1-4822-6278-0
Verlag: Taylor & Francis
Format: PDF
Kopierschutz: Adobe DRM (»Systemvoraussetzungen)
HealthCare Information Security and Privacy Practitioners (HCISPPSM) are the frontline defense for protecting patient information. These are the practitioners whose foundational knowledge and experience unite healthcare information security and privacy best practices and techniques under one credential to protect organizations and sensitive patient data against emerging threats and breaches.
The Official (ISC)2® Guide to the HCISPPSM CBK® is a comprehensive resource that provides an in-depth look at the six domains of the HCISPP Common Body of Knowledge (CBK). This guide covers the diversity of the healthcare industry, the types of technologies and information flows that require various levels of protection, and the exchange of healthcare information within the industry, including relevant regulatory, compliance, and legal requirements.
Numerous illustrated examples and tables are included that illustrate key concepts, frameworks, and real-life scenarios. Endorsed by the (ISC)² and compiled and reviewed by HCISPPs and (ISC)² members, this book brings together a global and thorough perspective on healthcare information security and privacy. Utilize this book as your fundamental study tool in preparation for the HCISPP certification exam.
Zielgruppe
Candidates for HealthCare Information Security and Privacy Practitioner certification.
Autoren/Hrsg.
Fachgebiete
Weitere Infos & Material
Domain 1–Healthcare Industry
The Healthcare Industry
Understand the Healthcare Environment
Understand External Third Parties
Foundational Health Data Management Processes
Domain 1 – Review Questions
Domain 2–Regulatory Environment
Identify Applicable Regulations
Understand International Regulations and Controls
Compare Internal Practices against New Policies and Procedures
Understand Compliance Frameworks
Understand Response for Risk-Based Decision
Understand and Comply with Code of Ethics/Conduct in a Health Information Environment
Domain 2 – Review Questions
Domain 3–Privacy and Security in Health Care
Understand Security Objectives/Attributes
Understand General Security Definitions and Concepts
Case Study
Case Study
General Privacy Principles
The Relationship between Privacy and Security
The Nature of Sensitive Data and Handling Implications
Case Study
Case Study
Security and Privacy Terminology Specific to Healthcare
References
Domain 3 – Review Questions
Domain 4–Information Governance andRisk Management
Understand Security and Privacy Governance
Information Governance
Governance Structures
Basic Risk Management Methodology
Understand Information Risk Management Lifecycles
Participate in Risk Management Activities
Domain 4 – Review Questions
Domain 5–Information Risk Assessment
Definitions
Intent
Information Lifecycle and Continuous Monitoring
Tools, Resources, and Techniques
Role of Internal and External Audit/Assessment
Control Assessment Procedures from within Organizational Risk Frameworks
Risk Assessment Consistent with Roles within an Organization
Participate in Efforts to Remediate Gaps
Domain 5 – Review Questions
Domain 6–Third-Party Risk Management
What is a Third Party in Healthcare?
Case Study
Maintain a List of Third-Party Organizations
Third-Party Management Standards and Practices
Determine When Third-Party Assessment is Required
Third-Party Assessments and Audits
Notifications of Security/Privacy Events
Support Establishment of Third-Party Connectivity
Case Study
Case Study
Case Study
Case Study
Case Study
Third-Party Program Requirements (Internal and External)
Remediation Efforts
Third Party Requests regarding Privacy/Security Events
References
Domain 6 – Review Questions
Appendix A – Answers to Domain Review Questions
