Information Security in Healthcare is the essential guide for implementing a comprehensive information security management program in the modern healthcare environment. Combining the experience and insights of top healthcare IT managers and information security professionals, this book offers detailed coverage of myriad topics including: IT security governance; risk management and strategic planning; data management and portability; identity and access management; sharing patient information; portable devices and medical device security implications; remote access; workforce training; incident response; disaster recovery and business continuity; developing compliance strategies; outsourcing; and information assurance. Special features of the book include a sample security plan and links to additional tools and resources. - See more at: http://ebooks.himss.org/product/information-security-in-healthcare-managing-risk.
| Preface |
|
ix | |
| Introduction |
|
xi | |
|
|
|
Chapter 1 IT Security Governance |
|
|
1 | (8) |
|
|
|
Chapter 2 Risk Management and Strategic Planning |
|
|
9 | (18) |
|
|
|
Chapter 3 Data Management and Portability |
|
|
27 | (18) |
|
|
|
|
|
45 | (10) |
|
|
|
Chapter 5 Identity and Access Management |
|
|
55 | (20) |
|
|
|
Chapter 6 Sharing Patient Information |
|
|
75 | (20) |
|
|
|
Chapter 7 Portable Devices |
|
|
95 | (18) |
|
|
|
Chapter 8 Medical Device Security Implications |
|
|
113 | (12) |
|
|
|
|
|
125 | (16) |
|
|
|
Chapter 10 Training the Workforce |
|
|
141 | (10) |
|
|
|
Chapter 11 The Importance of Incident Response |
|
|
151 | (20) |
|
|
|
Chapter 12 Disaster Recovery and Business Continuity |
|
|
171 | (24) |
|
|
|
Chapter 13 Developing an Effective Compliance Strategy |
|
|
195 | (10) |
|
|
|
Chapter 14 Managing Security with Outsourcing Partners |
|
|
205 | (12) |
|
|
|
Chapter 15 Physical Security |
|
|
217 | (20) |
|
|
|
Chapter 16 Effective Security Programs Enable Clinical and Business Improvements |
|
|
237 | (10) |
|
|
|
Chapter 17 The Foundations of Information Assurance |
|
|
247 | (8) |
|
|
|
Chapter 18 Personal Health Records |
|
|
255 | (18) |
|
|
| Appendix A Resources for Information Privacy and Security in Healthcare |
|
273 | (16) |
| Appendix B Sample Security Plan |
|
289 | |
Terrell W. Herzig, MSHI, CISSP, is Information Security Officer of the UAB Health System, Birmingham, Alabama, the UAB HIPAA Security Officer, and an Adjunct Professor of Health Informatics at the University of Alabama at Birmingham (UAB).
Rohkem infot Taylor & Francis e-raamatute kohta