Module 05 Course Project - Risk Management Plan
yoko@3074
mod05_risk_mgmt_template.docxRisk Assessment Template
|
Security Assessment |
Potential Vulnerabilities |
Security Mitigation |
|
Physical |
1. Data Center is accessible to all employees |
1. Install badge reader to control access to employees that need access |
|
Technical |
1. PHI is accessible without VPN |
1. Require remote users to log into VPN |
|
Policies and Procedures |
1. Team performs ad hoc security measures |
1. Security Analysts conducts quarterly review on user’s activities |
|
Organization Standards |
1. Business Associate agreements renewed and updated |
1. Review documents with internal legal counsel |
