Categories: Excelling Homework

HIM 422 SNHU The security breach occurred at ABC hospital Research healthcare data breaches in one of the publications mentioned in the assignment; select

HIM 422 SNHU The security breach occurred at ABC hospital Research healthcare data breaches in one of the publications mentioned in the assignment; select a breach and prepare a briefing for an imagined execute team. Include the nature of the breach, key stakeholders to be notified, impacts of the breach, recommendations for remediating the breach and ensuring the security of patient and organizational fata, and recommendations for preventing another breach from happening. This paper will include all of the elements of the previous milestones, but should be a complete, polished artifact. Milestones one, two, and three are attached as well as the specific guidelines for this assignment. HIM 422 Final Project Guidelines and Rubric
Overview
Healthcare organizations, which accounted for about 42% of all major data breaches reported in 2014, will continue to be vulnerable and attractive targets for
cybercriminals, due to the expanding number of access points to protected health information and other sensitive data via electronic health records (EHR) and
the growing popularity of wearable technology. Hospitals, providers, and even individual physicians need to ensure that they create and then implement a
strong healthcare security program as the organizational impacts of healthcare data breaches range from costly financial penalties to costly bad publicity.
As a health information management professional, you will be expected to apply the science of informatics to the collection, safe storage, analysis, use, and
transmission of sensitive and confidential patient and organizational information to meet legal, professional, ethical, and administrative records-keeping
requirements of healthcare delivery. Should a data breach occur in your facility, you will be looked to as an expert in helping to identify the nature of the breach
and provide recommendations for remediation and prevention.
For the final project for this course, you will imagine yourself as the IT director of a healthcare organization who has just been alerted to the presence of a data
breach. You will need to research healthcare data breaches using one or more of the following publications:
•
•
•
•
•
•
Harvard Business Review
Journal of AMIA (American Medical Informatics Association)
Journal of AHIMA (American Health Information Management Association)
Journal of Hospital Administration
Journal of Healthcare Administration Ethics
Online Journal of Health Ethics
Then, based on your research, select a type of breach or a specific breach and prepare a briefing for your imagined executive team—the “C-Suite” (CEO, CIO,
CFO, CMO, and CNO)—that outlines the nature of your breach, key stakeholders to be notified, impacts of the breach, recommendations for remediating the
breach and ensuring the security of patient and organizational data going forward, and recommendations for preventing another breach from happening.
In this assignment, you will demonstrate your mastery of the following course outcomes:
?
?
?
?
Assess the impact of key healthcare laws and internal codes of compliance on professional healthcare information management with regard to
organizational decision making
Analyze the role of federally sponsored initiatives in improving healthcare quality, safety, and efficiency while reducing existing gaps in securing patient
health information
Recommend technology-based strategies for ensuring data confidentiality
Propose feasible solutions to organizational challenges that address data-related ethical and legal risks to patient safety and quality of care
Prompt
Specifically, the following critical elements must be addressed:
I.
Summary of Problem
A. Describe the nature of your data breach. How did the breach occur (e.g., did an employee fail to shut down a computer?), and what
consequences resulted (e.g., access to records by unauthorized personnel)? Be sure to use specific examples from your research to inform your
description.
B. Identify the specific data that was breached in this attack. In other words, was it confidential patient data? Organizational data? Something else?
Be sure to use specific examples from your research to inform your identification.
II.
Key Stakeholders
A. Identify the key internal (e.g., organizational staff, board, etc.) and external (e.g., patients, vendors, etc.) stakeholders in your organization who
will need to be notified about the data breach, and justify your rationale based on your research.
B. Identify the key federal stakeholders (i.e., governmental officials) who need to be notified about the breach, and justify your rationale based on
your research.
III.
Impacts
A. Identify laws that are in place specifically for trying to prevent such data breaches, and assess the extent to which these laws were violated
during this data breach. Be sure to use specific examples from your research to support your position.
B. Determine the applicability of the laws you identified above to your organization. Be sure to use specific research to substantiate your claims.
C. Assess the impact of the data breach on financial decision making within your organization. In other words, what effect(s) will potential financial
penalties have on your organization? Be sure to cite specific examples from your research.
D. Analyze any non-financial impacts (e.g., bad publicity, etc.) that could result from this breach. Be sure to cite specific examples from your
research. If you feel there are none, be sure to justify your rationale.
E. Evaluate your organization’s use of the appropriate federally sponsored initiatives in ensuring the provision of the highest level of healthcare
quality and safety, and efficiency in keeping data secure. Be sure to cite specific examples from your research.
IV.
Ethical and Legal Considerations: Analyze any ethical and legal risks that you feel may have contributed to the data breach. For example, did it occur
because boundaries were crossed by staff or others, or because of questionable behavior by staff or others that went unaddressed? Be sure to cite
specific examples from your research in supporting your claims. If you feel there were no ethical or legal risks involved in the breach, be sure to justify
your rationale.
V.
Recommendations
A. Considering the nature of the data breach, provide technology-based recommendations for ensuring data confidentiality and preventing future
breaches of this sort. Be sure to justify your recommendations with research.
B. Provide recommendations for solving organizational challenges that may have contributed to this breach. In other words, do staff need
additional training surrounding data security? Do new bylaws need to be implemented regarding staff behavior? Be sure to support your
recommendations with specific research. If you feel there are no organizational challenges that contributed to the breach, make
recommendations for enhancing security and privacy of data.
C. Provide recommendations based on the currently available federally sponsored initiatives that your organization should subscribe to in order to
improve quality and safety within its structure, as well as reducing gaps in securing patient information. Be sure to support your
recommendations with specific research.
Milestones
Milestone One: Summary of Problem and Key Stakeholders
In Module Two, you will imagine yourself as the IT director of a healthcare organization who has just been alerted to the presence of a data breach. As the IT
director, you are expected to apply the science of informatics to the collection, safe storage, analysis, use, and transmission of sensitive and confidential patient
and organizational information to meet legal, professional, ethical, and administrative records-keeping requirements of health care delivery. Should a data
breach occur in your facility (as has now happened), you are looked to as an expert in helping identify the nature of the breach and provide recommendations
for remediation and prevention going forward. After researching healthcare data breaches, using one or more professional journals, you will prepare a briefing
for your executive team, the “C-Suite” (CEO, CIO, CFO, CMO, and CNO), that outlines the nature of your imagined breach and the key stakeholders to be notified.
This milestone will be graded with the Milestone One Rubric.
Milestone Two: Impacts
In Module Four, after successfully briefing your executive team—the “C-Suite” (CEO, CIO, CFO, CMO, and CNO)—on the nature of your imagined breach and the
key stakeholders to be notified, you have been asked to present another report detailing the impact the breach has on your organization. The “C-Suite” is
interested in knowing the legal and financial impact this breach has had on the organization and what federally sponsored initiatives can be put in place to
ensure that the institution is providing high-quality healthcare, patient and staff safety, and data protection. This milestone will be graded with the Milestone
Two Rubric.
Milestone Three: Ethical and Legal Considerations and Recommendations
In Module Six, you will submit your ethical and legal considerations and recommendations. Your executive team, the “C-Suite” (CEO, CIO, CFO, CMO, and CNO),
was impressed with your report detailing the legal, financial, and non-financial impact the data breach had on your organization. They were also impressed with
your research on federally sponsored initiatives designed to ensure that the institution is providing high-quality healthcare, patient and staff safety, and data
protection. However, in order for the executive team to make the best decision for moving the organization forward, they need additional information. This time
they want to know what ethical and/or legal risks may have contributed to the data breach as well as recommendations for how the organization can ensure
that such a breach does not happen again without compromising quality healthcare and patient and staff safety. This milestone will be graded with the
Milestone Three Rubric.
Final Submission: Executive Team Briefing
In Module Eight, you will submit your final project. It should be a complete, polished artifact containing all of the critical elements of the final product. It should
reflect the incorporation of feedback gained throughout the course. This submission will be graded with the Final Project Rubric.
Deliverables
Milestone
Deliverable
Module Due
Grading
One
Summary of Problems and Key Stakeholders
2
Graded separately; Milestone One Rubric
Two
Impacts
4
Graded separately; Milestone Two Rubric
Ethical and Legal Considerations and Recommendations
6
Graded separately; Milestone Three Rubric
Final Submission: Executive Team Briefing
8
Graded separately; Final Project Rubric
Three
Final Project Rubric
Guidelines for Submission: Your executive team briefing should use double spacing, 12-point Times New Roman font, and one-inch margins, and all citations and
references should be formatted using the most current APA guidelines.
Critical Elements
Summary: Nature
of Breach
Exemplary (100%)
Meets “Proficient” criteria and
uses industry-specific language
accurately to establish expertise
Proficient (85%)
Accurately describes nature of
breach using specific examples
from research to inform
description
Summary: Specific
Data
Meets “Proficient” criteria and
identification is exceptionally
clear and well informed
Accurately identifies specific data
that was breached in attack and
uses specific examples from
research to inform identification
Stakeholders:
Internal and
External
Meets “Proficient” criteria and
identification is exceptionally
clear and well informed
Accurately identifies key internal
and external stakeholders to be
informed and justifies rationale
based on research
Stakeholders:
Federal
Meets “Proficient” criteria and
identification is exceptionally
clear and well informed
Accurately identifies key federal
stakeholders to be informed and
justifies rationale based on
research
Needs Improvement (55%)
Describes the nature of the
breach and provides examples
from research but with gaps in
accuracy or the provided
examples are not specific or do
not inform the description
Identifies specific data that was
breached in attack but with gaps
in accuracy or the provided
examples are not specific or do
not inform the identification
Identifies key internal and
external stakeholders to be
informed but with gaps in
accuracy or detail or rationale is
not justified based on research
Identifies key federal
stakeholders to be informed but
with gaps in accuracy or detail, or
rationale is not justified based on
research
Not Evident (0%)
Does not describe nature of
breach with examples
Value
5
Does not identify specific data
breached in attack
5
Does not identify key internal and
external stakeholders to be
informed
8
Does not identify key federal
stakeholders to be informed
8
Impacts: Laws to
Prevent
Meets “Proficient” criteria and
examples cited demonstrate keen
insight into legal aspects of
healthcare data breaches
Accurately identifies laws that are
in place for trying to prevent such
data breaches and assesses the
extent to which they were
violated using specific examples
from research to support position
Impacts:
Applicability
Meets “Proficient” criteria and
examples cited demonstrate keen
insight into legal aspects of
healthcare data breaches
Accurately determines
applicability of laws to
organization, using specific
research to substantiate claims
Impacts: Financial
Penalties
Meets “Proficient” criteria and
assessment is exceptionally clear
and well informed
Assesses the impact of the data
breach on financial decision
making in the organization, citing
specific examples from research
Impacts: Nonfinancial
Meets “Proficient” criteria and
expands on the impact beyond
immediate internal stakeholders,
encompassing the external
environment
Analyzes non-financial impacts
that could result from breach,
citing specific examples from
research, or justifies rationale if
none were identified
Impacts: Sponsored
Initiatives
Meets “Proficient” criteria and
articulates nuanced connections
between sponsored initiatives
and healthcare quality and safety
and data security
Evaluates organization’s use of
sponsored initiatives in ensuring
healthcare quality and safety and
efficiency in keeping data secure,
and cites specific examples from
research
Analyzes ethical and legal risks
that may have contributed to
data breach, citing specific
examples from research to
support claims, or justifies
rationale if none were identified
Ethical and Legal
Considerations
Meets “Proficient” criteria and
demonstrates nuanced insight
into the ethical and legal
implications associated with
healthcare data breaches
Identifies laws that are in place
for trying to prevent such data
breaches and assesses the extent
to which they were violated, but
with gaps in accuracy or detail, or
the provided examples are not
specific or do not support
position
Determines applicability of laws
to organization but with gaps in
accuracy or provided research is
not specific or does not
substantiate claims
Assesses the impact of the data
breach on financial decision
making in the organization, but
with gaps in accuracy, or cited
examples are not specific
Analyzes non-financial impacts
that could result from breach, but
with gaps in accuracy, or
examples cited are not specific,
or rationale is not justified if none
were identified
Evaluates organization’s use of
sponsored initiatives, but with
gaps in detail, or does not cite
specific examples from research
Does not identify laws that are in
place for trying to prevent such
data breaches
8
Does not determine applicability
of laws to organization
8
Does not assess the impact of the
data breach on financial decision
making in the organization
8
Does not analyze non-financial
impacts that could result from
breach
8
Does not evaluate organization’s
use of sponsored initiatives
8
Analyzes ethical and legal risks
that may have contributed to
data breach, but with gaps in
detail, or examples cited are not
specific or do not support claims,
or rationale is not justified if none
were identified
Does not analyze ethical and legal
risks that may have contributed
to data breach
8
Recommendations:
Technology-Based
Meets “Proficient” criteria and
provides suggestions for optimal
performance
Provides appropriate technologybased recommendations for
ensuring data confidentiality and
preventing future breaches, and
justifies recommendations with
research
Recommendations:
Organizational
Challenges
Meets “Proficient” criteria and
provides suggestions for optimal
performance
Provides appropriate
recommendations for solving
organizational challenges that
may have contributed to the
breach and supports
recommendations with specific
research or makes
recommendations for enhancing
security and privacy of data if no
organizational challenges were
identified
Recommendations:
Reducing Gaps
Meets “Proficient” criteria and
provides suggestions for optimal
performance
Articulation of
Response
Submission is free of errors
related to citations, grammar,
spelling, syntax, and organization
and is presented in a professional
and easy-to-read format
Provides recommendations based
on currently available federally
sponsored initiatives for
improving quality and safety and
reducing gaps in securing patient
information, and supports
recommendations with specific
research
Submission has no major errors
related to citations, grammar,
spelling, syntax, or organization
Provides technology-based
recommendations that are not
appropriate considering the
nature of the breach for ensuring
data confidentiality and
preventing future breaches or
provided research does not
justify recommendations
Provides recommendations that
are not appropriate for solving
organizational challenges that
may have contributed to the
breach, or provided research is
not specific or does not support
recommendations, or does not
make appropriate
recommendations for enhancing
security and privacy of data if no
organizational challenges were
identified
Provides recommendations, but
with gaps in detail, or provides
recommendations that are not
based on currently available
federally sponsored initiatives, or
provided research is not specific
or does not support
recommendations
Submission has major errors
related to citations, grammar,
spelling, syntax, or organization
that negatively impact readability
and articulation of main ideas
Does not provide technologybased recommendations for
ensuring data confidentiality and
preventing future breaches
8
Does not provide
recommendations for solving
organizational challenges that
may have contributed to the
breach, or does not make
recommendations for enhancing
security and privacy of data if no
organizational challenges were
identified
8
Does not provide
recommendations for improving
quality and safety and reducing
gaps in securing patient
information
8
Submission has critical errors
related to citations, grammar,
spelling, syntax, or organization
that prevent understanding of
ideas
Total
2
100%
HIM 422 Milestone One Guidelines and Rubric
Imagine yourself as the IT director of a healthcare organization who has just been alerted to the presence of a data breach. As the IT director, you are expected
to apply the science of informatics to the collection, safe storage, analysis, use, and transmission of sensitive and confidential patient and organizational
information to meet legal, professional, ethical, and administrative records-keeping requirements of health care delivery. Should a data breach occur in your
facility (as has now happened), you are looked to as an expert in helping identify the nature of the breach and provide recommendations for remediation and
prevention going forward. After researching healthcare data breaches, using one or more professional journals, you will prepare a briefing for your executive
team, the “C-Suite” (CEO, CIO, CFO, CMO, and CNO), that outlines the nature of your imagined breach and the key stakeholders to be notified.
Note: Keep in mind that many of the executives have little to no experience with IT, so they may not understand IT-specific jargon. It is recommended that you
do not make the report too technical; your findings, analysis, and recommendations should be in everyday language unless jargon is absolutely needed.
Specifically, the following critical elements must be addressed:
I.
Summary of Problem
A. Describe the natu…
Purchase answer to see full
attachment

Don't use plagiarized sources. Get Your Custom Essay on
HIM 422 SNHU The security breach occurred at ABC hospital Research healthcare data breaches in one of the publications mentioned in the assignment; select
For $10/Page 0nly
Order Essay
admin

Recent Posts

Economic Debate #3- Progressive Income Tax – The Homework Helper

Economic Debate- Progressive Income Tax For this Economic Debate, we are going to discuss the…

2 years ago

MKT 6120 – Marketing Management – Davis Learning Engagement #7

TOPIC: Going Global Discussion Thread 1 (initial post due Wednesday for full credit) Please note:…

3 years ago

jvjvjhvjhvhjvj

Assignment Topic This week will culminate in the creation of a narrated PowerPoint to create…

3 years ago

Students are supposed to select a technological organization of their choice.

The Assignment must be submitted on Blackboard (WORD format only) via allocated folder. Assignments submitted…

3 years ago

Increases the risk of wildfires

you need to post your 2-page information flier to share with your Final Project Group.…

3 years ago

Statistics for Technology management

discussion: Discuss the methods used at your company to measure and ensure quality products and…

3 years ago