Safe teleradiology: information assurance as project planning methodology.

No Thumbnail Available
Date
2005-01-06
Authors
Journal Title
Journal ISSN
Volume Title
Publisher
Abstract
The Georgetown University Medical Center Department of Radiology used a tailored version of OCTAVE a self directed information security risk assessment method to design a teleradiology system that complied with the regulation implementing the security provisions of the Health Insurance Portability and Accountability Act HIPAA of 1996 The system addressed threats to and vulnerabilities in the privacy and security of protected health information By using OCTAVE Georgetown identified the teleradiology program s critical assets described threats to the assurance of those assets developed and ran vulnerability scans of a system pilot evaluated the consequences of security breaches and developed a risk management plan to mitigate threats to program assets thereby implementing good information assurance practices This case study illustrates the basic point that prospective comprehensive planning to protect the privacy and security of an information system strategically benefits program management as well as system security
Description
Keywords
Citation
URI
http://dx.doi.org/10.1197/jamia.M1404
 https://lib.digitalsquare.io/xmlui/handle/123456789/57120
Collections
mhealth Evidence