security and privacy 3

Resource: Security and Privacy Grading Criteria

As an information systems manager, you will need to consider a very important aspect of your operation—patient information, privacy, and security. Review the following case scenarios and select one to use for your management plan for security and privacy.


Case Scenario 1 (Security Breach):

The administration at St. John’s Hospital takes pride in its sound policies and procedures for the protection of confidential client information. In fact, it serves as a model for other institutions in the area, however, printouts discarded in the restricted-access IS department are not shredded. On numerous occasions, personnel working late have observed the cleaning staff reading discarded printouts. What actions, if any, should these personnel take toward the actions of the cleaning staff? What actions, if any, should be taken by IS administration?


Develop a process for maintaining patient privacy and security.

Include a detailed management plan in the case of a security breach (Case Scenario 1). In your plan, address the following questions:

  • How can you respond to these situations?
  • What training can you provide to your staff?
  • How can you implement your management plan?

Include a code of conduct with your plan.

Write a 1,750- to 2,100-word description of your facility’s patient data privacy and security plan.

Use a minimum of four references that directly support your analysis.


Format your paper consistent with APA guidelines.