[SOLVED] 2 short responses with references
Im studying for my Health & Medical class and dont understand how to answer this. Can you help me study?
1. Healthcare information systems contains high quantity of personal health information (PHI) which is covered by Health Insurance Portability and Accountability Act (HIPAA) privacy rules. Electronic PHI is covered HIPAA security rules. We all know what could happen if this information gets into the wrong hands. Electronic PHI is shared and transferred across different systems. Fichman, Kohli, & Krishnan (2011) tells us that transferring information puts it at risk that is both actual and perceived, risk that the information could fall into the wrong hands. Im a believer that if you put all your coins in one basket, regardless of how good of security you have, one it stolen all the coins are gone. Therefore, one universal Healthcare Information System (HIS) should never be the answer. Individual HIS information technology companies should continue to strive to be the best at providing security to a government standard. The government should mandate a policy with guidelines that dictate requirement that all HIS must have. Due to the nature of hackers, HIS must be fluid with random and timely security updates. With in hours or days of updates being requires the Joint Commission are put into full force conducting random inspection, depending to the systems inspection could even possible be done remotely. Hospitals that do not comply can be penalized.
2.Standards are the building blocks for any health information system. Specially, information
security standards are crucial to address security requirements. Information security standards
may specify control settings. Different information security controls require refinement and
adjustments so that policies can be revised, approved and adopted (Mandel, Kreda, Mandl,
Kohane, & Ramoni, 2016; Priyanath, Feinglass, Dolan, Haviley, & Venta, 2002) . Some examples
can include password strengths, encryption strengths and audit event settings. Standards also
ensure that audits policy and capabilities are established (Simnett & Trotman, //) . In terms of
providing external expanded guidance, standards can also ensure proper information exchange
and helps to protect systems against the effects of denial of service attacks (Management
Issue 9: Integrity and Security of Health Information Systems and Data, n.d.) . This also ensure
that the security risk assessment protocols are in place and the hospital information system can
handle security breach from outside. Therefore, new and advanced firewall and blockchain
technology can be at place (Ichikawa, Kashiyama, & Ueno, 2017; Till, Peters, Afshar, & Meara,
Another very important aspects of standards revolved around health information exchange. It is
necessary that hospitals use similar standards for proper health information interoperability
(Collins, Bakken, Vawdrey, Coiera, & Currie, 2011; Furukawa et al., 2014) . Thus, patients health
information will be transferrable and much errors can be avoided. Most importantly, proper
standards will enable future use of artificial intelligence and big data analytics in healthcare.