Name
Title | ||
|---|---|---|
Case Report: Safe Teleradiology: Information Assurance as Project Planning Methodology |
Abstract | ||
|---|---|---|
The Georgetown University Medical Center Department of Radiology used a tailored version of OCTAVESM, a self-directed information security risk assessment method, to design a teleradiology system that complied with the regulation implementing the security provisions of the Health Insurance Portability and Accountability Act (HIPAA) of 1996. The system addressed threats to and vulnerabilities in the privacy and security of protected health information. By using OCTAVESM, Georgetown identified the teleradiology program's critical assets, described threats to the assurance of those assets, developed and ran vulnerability scans of a system pilot, evaluated the consequences of security breaches, and developed a risk management plan to mitigate threats to program assets, thereby implementing good information assurance practices. This case study illustrates the basic point that prospective, comprehensive planning to protect the privacy and security of an information system strategically benefits program management as well as system security. |
Year | DOI | Venue |
|---|---|---|
2005 | 10.1197/jamia.M1404 | Journal of the American Medical Informatics Association |
Keywords | DocType | Volume |
information system,risk management,project planning,information security,risk assessment,system security,protected health information | Journal | 12 |
Issue | ISSN | Citations |
1 | 1067-5027 | 0 |
PageRank | References | Authors |
0.34 | 0 | 4 |
Name | Order | Citations | PageRank |
|---|---|---|---|
| Jeffery Collmann | 1 | 0 | 1.35 |
| Adil Alaoui | 2 | 4 | 2.37 |
| Dan Nguyen | 3 | 0 | 0.34 |
| David Lindisch | 4 | 43 | 10.97 |