Scribd Logo
Upload

Welcome to Scribd!

  • Cyber Security Risk Assessment Report Reflective Practice

    Uploaded by

    api-672832076
    71 views4 pages
    This document contains reflections and an action plan from analyzing a HIPAA security risk assessment tool and conducting a desk audit. [1] The reflections note a lack of understanding of HIPAA regulations, policies, and roles that led to difficulties. [2] The action plan aims to increase comprehension of privacy and security assessments, broaden knowledge of information security policies from a small practice perspective, and widen understanding of HIPAA mandates through obtaining more training, guidance, and staying up to date on regulatory changes. [3] The goals target improved implementation of policies and regulations over time through continuous review.

    Original Description:

    Original Title

    cyber security risk assessment report reflective practice

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    This document contains reflections and an action plan from analyzing a HIPAA security risk assessment tool and conducting a desk audit. [1] The reflections note a lack of understanding of HIPAA regulations, policies, and roles that led to difficulties. [2] The action plan aims to increase comprehension of privacy and security assessments, broaden knowledge of information security policies from a small practice perspective, and widen understanding of HIPAA mandates through obtaining more training, guidance, and staying up to date on regulatory changes. [3] The goals target improved implementation of policies and regulations over time through continuous review.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as pdf or txt
    71 views4 pages

    Cyber Security Risk Assessment Report Reflective Practice

    Uploaded by

    api-672832076
    This document contains reflections and an action plan from analyzing a HIPAA security risk assessment tool and conducting a desk audit. [1] The reflections note a lack of understanding of HIPAA regulations, policies, and roles that led to difficulties. [2] The action plan aims to increase comprehension of privacy and security assessments, broaden knowledge of information security policies from a small practice perspective, and widen understanding of HIPAA mandates through obtaining more training, guidance, and staying up to date on regulatory changes. [3] The goals target improved implementation of policies and regulations over time through continuous review.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as pdf or txt
    of 4

    1

    Reflective Practice Worksheet

    Reflection Template

    Reflection 1

    Description Reflection Influencing Learning Point Miscellaneous


    Factors

    Complexities in My understanding My lack of Conducting a desk Newer methods of


    comprehension of the lacked the depth of the understanding of audit for HIPAA evaluation of
    Security Risk HIPAA regulations. HIPAA Security Risk compliance has policies could be
    Assessment tool by Assessment tool helped to have a done as the clinic
    HIPAA caused I was using the wider perspective, has changed from
    difficulties in Security Risk assess, and paper-based
    completing the desk Assessment tool only comprehend the records to electronic
    audit. for smaller practice regulatory health records
    setup. requirements for a (EHR) and the
    clinic. regulatory
    environment is also
    changing.

    Reflection 2

    Description Reflection Influencing Learning Point Miscellaneous


    Factors

    Lack of My analysis of the My understanding Conducting a desk Providing in-depth


    understanding of the desk audit lacked the lacked knowledge of audit has assisted details of the
    HIPAA Privacy and understanding of what HIPAA Privacy and me in providing a operating posture
    Security Policy led goes into an effective Security Policy deeper could be provided
    me to have difficulties operating posture for understanding of as the policies and
    while conducting information security. the effective procedures are
    Information Security operating posture used across various
    Policy audit I conducted the HIPAA for information settings
    Privacy and Security security.
    desk audit with only
    the present situation or
    the current regulatory
    environment.
    2

    Reflection 3

    Description Reflection Influencing Learning Point Miscellaneous


    Factors

    Deficiency in My assessment of the My perception was Performing an audit Updating roles and
    understanding of Desk audit was deficit deficient in HIPAA has helped to gain responsibilities of
    HIPAA Privacy and in understanding the Privacy and Security deeper each employee
    Security Policy led roles and Policy. understanding of every year would
    me to have difficulties responsibilities of the framework of help in better
    in understanding the employees influencing roles influencing understanding of
    framework for any these operations. these operational HIPAA Privacy and
    roles influencing considerations. Security Policy.
    these operational
    considerations.
    3
    Action Plan Template

    Action Plan

    Reflection Goal Actions I will Possible Obstacles How I will know Target to meet
    implement I’ve achieved my goal/Review
    goal date

    Increase Obtain and gather more Understanding broad Proper Achieve the goal
    comprehension of information about meanings of the HIPAA implementation of within 8 months
    Privacy and Privacy and Security literature. the regulations and and a review date
    Security through various compliance in small every 6 months to
    assessment for a websites like HHS.gov practices. check of the goals
    clinic setting. and are continually
    HealthIT.gov’s Guide Complete the met.
    to Privacy and Security HIPAA updates and
    of Electronic Health regulations training
    Information.

    Acquire knowledge
    about HIPAA training
    and compliance.

    Gain training on Assign time to evaluate Accurate Achieve the goal in


    Broaden knowledge Information Security HIPAA Information knowledge through 6 months and a
    on Information Policy and focus on Security Policy videos and training. review date every
    Security policy from electronic health records 4 months.
    the perspective of a and data encryption. Increased
    small practice. confidence in
    Understand the security implementation of
    policy across various the Information
    entities which includes Security Policy.
    clinic and business
    associates. Train
    through videos,
    webinars, and
    educational paper series
    through websites like
    HHS.gov

    Attend webinars,
    Widen my newsletters and gain Availing Increased Achieve the goal in
    knowledge of latest updates in funding/scholarships awareness about 10 months and a
    HIPAA mandate regulation and from HIPAA for regulation and review date every
    compliance. continued education. compliance. 8 months.

    Obtain HIPAA training


    certification.
    4

    You might also like