ppts
Radina99
Group6_updated.pptxIntroduction
Due to advancements and proliferation of technology in health care industry and accelerating cost in all dimensions of healthcare and services including health insurance there is a lot of need for improved health conditions and wellness (Patil & Seshadri, 2014).
There is a lot of initiatives from government to improve public health conditions and wellness like providing incentives to Solomon Enterprises healthcare industry, providers and groups (Patil & Seshadri, 2014).
As a result of all these upgrades in healthcare processes gave scope and need for sharing data with other vendors and partners in healthcare industry (Patil & Seshadri, 2014)
Administrative Controls
Backgrounding Employee’s/Training Employees
Conducting Criminal background checks
Deep insights on the work history and educational background
Credit checks.
Training on non-disclosure agreements.
Compliance training and teaching employees.
Physical Policies
Physical security addresses to plan, usage, and keep of countermeasures that ensure physical assets of an association (Adelaiye, Showole & Faki, 2018).
Most controls can be evaded if attackers increases physical access.
Physical security is as significant as consistent security.
Controls for protecting secure facility
Walls, fencing and gates.
Guards.
ID cards and badges.
Locks and keys.
Alarms and electric monitoring.
Fire extinguisher.
Separate secure rooms for servers and physical data.
Technical Controls
User identification and Authentication
Biometric
Encryption
Password and Tokens
Firewalls
Least Privilege
Intrusion Detection System
End Point Behavior analysis.
Automatic Log –Off feature.
Security policies
Change management policy
Email Policy
Physical Security policy
Media Disposal policy
Acceptable use policy
Legislation/Regulations or industry standards
Impact of Health Insurance Portability and Accountability Act (HIPAA) 1996 on Solomon organization (Gavrilov, Jakimovski, Chorbev, & Trajkovik, 2018).
Ensure the confidentiality, integrity, and availability of all electronic protected health information.
Health level 7 (HL-7).
Protected health information (PHI).
Network Security Tool
The below are the considerations that must be made in the case of Solomon Enterprises when selecting a protection tool;
The potential threat (Shah & Issac, 2018).
The compatibility of the tool to the system
The reputation of the tool
The effectiveness of the tool
Affordability
Snort
The characteristics of snort
Speed
Flexible during deployment
Modular detection engine
Flexible in usability
Scalability
Conclusion
In conclusion, we have chosen a systematic approach to perform research on evolving security practices and security requirements for health care organization called Solomon Enterprises (Zhang & Liu, 2010).
We have discussed about security aspects involves in key areas like physical, legislative, Administrative, technical and networking of Solomon enterprises healthcare organization (Zhang & Liu, 2010).
we indeed had discussion points about analyzing current security measures in place, the emerging security threats to health care data and providing solutions with emerging security techniques, tools and counter measures (Zhang & Liu, 2010).
References
Patil, H. K., & Seshadri, R. (2014). Big Data Security and Privacy Issues in Healthcare. 2014 IEEE International Congress on Big Data. doi:10.1109/bigdata.congress.2014.112
Adelaiye, O. I., Showole, A., & Faki, S. A. (2018). Evaluating Advanced Persistent Threats Mitigation Effects: A Review. International Journal of Information Security Science, 7(4), 159-171.
Gavrilov, G., Jakimovski, B., Chorbev, I., & Trajkovik, V. (2018). Cloud-Based Electronic Health Record for Health Data Exchange. PROCEEDINGS OF THE 8th INTERNATIONAL CONFERENCE ON APPLIED INTERNET AND INFORMATION TECHNOLOGIES. doi:10.20544/aiit2018.p03
Shah, S. A. R., & Issac, B. (2018). Performance comparison of intrusion detection systems and application of machine learning to Snort system. Future Generation Computer Systems, 80, 157-170.
Zhang, R., & Liu, L. (2010). Security Models and Requirements for Healthcare Application Clouds. 2010 IEEE 3rd International Conference on Cloud Computing. doi:10.1109/cloud.2010.62
