Information Security and Assurance

/in /by

Information Security and Assurance final-IT
Paper , Order, or Assignment Requirements

Part 1: True and False Questions. Write your answer, “T” or “F”, to each question in the following Answer Table. (10 questions at 2 points each, 20 points totally)

1. A one-time pad is a safe house used only once by an undercover agent.

2. AES uses the Indirect-Rijndael algorithm.

3. A hash algorithm uses a one-way cryptographic function, whereas both secret-key and public-key systems use two-way (i.e., reversible) cryptographic functions.

4. In terms of privacy laws, companies have no advantage over the government in terms of the types of data that a company can collect. Public companies and governments are subject to the same laws and statues (i.e. HIPPA and GLBA) regarding data collection.

5. Consider data that is stored over time in a mandatory access control based system. The contents of files containing highly classified (“top secret”) information are not necessarily more trustworthy than material stored in files marked unclassified.

6. 3DES (Triple DES) requires the use of three independent keys.

7. Deleting the browsing history and cookies in a computer system can completely delete the recently visited sites.

8. A Denial-of-Service attack does not require the attacker to penetrate the target’s security defenses.

9. The biggest advantage of public-key cryptography over secret-key cryptography is in the area of key management/key distribution.

10. Packet filters protect networks by blocking packets based on the packets’ contents.
Part 2: Multiple Choice Questions.
Note: In some questions you may need to select more than one of the options. (Scored as 3 points for each question, no guarantee of partial credit for partially correct answers.) Write your answers in the following Answer Table.

1. Methods to avoid SQL injection include which of the following:
a. Providing functions to escape special characters.
b. Built-in functions that strip input of dangerous characters.
c. Techniques for the automatic detection of database language in legacy code.
d. Techniques for the automatic detection of SQL language in legacy code.
e. All of the above.

2. Protection of a software program that uses a unique, novel algorithm could be legally protected by:
a. A patent
b. A copyright
c. A notary
d. Ethical standards
e. All of the above.

3. If person A uses AES to transmit an encrypted message to person B, which key or keys will A have to use:
a. A’s private key
b. A’s public key
c. B’s private key
d. B’s public key
e. None of the keys listed above.

4. Choose the right statement(s):
a. On change-controlled system, you should run automatic updates to prevent security patches from introducing instability.

b. A malicious driver can potentially bypass many security controls to install malware.

c. It is critical that the operating system be kept as up to date as possible, with all critical security related patched installed.

d. The operating system planning process should consider the categories of users on the system, and the privileges they have.

e. All of the above.
5. Broad categories of payloads that malware may carry include which of the following:

a. Corruption of system or data files;
b. Theft of service in order to make the system a zombie agent of attack as part of a botnet;
c. Theft of information from the system, especially of logins, passwords or other personal details by keylogging or spyware programs;
d. Stealthing where the malware hides it presence on the system from attempts to detect and block it;
e. All of the above.
6. SELinux implements different types of MAC: ________________________.

a. Role Based Access Controls and Type Enforcement
b. Multi Level Security
c. Multi Task Level Security
d. User Based Access Controls and Format Enforcement
e. None of the above.

7. Security threats include which of the following:
a. Hurricanes
b. Disgruntled employees
c. Unlocked doors
d. Un-patched software programs
e. All of the above.
8. The basic step(s) should be used to secure an operating system:
a. Install and register the operating system.

b. Harden and configure the operating system to adequately address the identified security needs of the system.

c. Installing and configure additional security controls, such as anti-virus, host-based firewalls, and intrusion detection systems (IDS), if needed.

d. Test the security of the basic operating system to ensure that the steps taken adequately address its security needs.

e. All of the above.
9. Denial of service attacks include:
a. DNS spoofing
b. Smurf attack
c. Ping of death
d. SYN flood
e. All of the above.
10. Countermeasures against subdomain DNS cache poisoning include which of the following:
a. Firewalls
b. SPR
c. DNSSEC uses RRSIG and DNSKEY records
d. DNSSEC employing a chain of trust
e. All of the above.

 

"Looking for a Similar Assignment? Get Expert Help at an Amazing Discount!"

Detail the advantages and disadvantages of using a web-based HRIS compared to an internally hosted HRIS

/in /by

HR Info Systems 8 Essay Questions due in THREE HOURS
Paper , Order, or Assignment Requirements

1. (TCO 1) Detail the advantages and disadvantages of using a web-based HRIS compared to an internally hosted HRIS

2. (TCO 2) A company’s business strategy includes rapid growth, including a 50% increase in staff over the next 2 years. Describe/explain how the use of HR technology can support this strategy, as it relates to staffing (including forecasting and tracking)

3. (TCO 3) Keeping track of employee information has been a laborious task for HR. Through technology, this task has been automated in a variety of ways. Describe how obtaining employee information through technology has now included HR as a strategic partner within the business

4. (TCO 4) Employee self-service (ESS) and management self-service (MSS) have given more control and responsibility to employees and managers, towards managing their own benefits and careers, as well as allowing managers to have easy access to their teams’ information. What might be some employee concerns related to managers having access to these data? Describe the risks for both ESS and MSS.

5. (TCO 5) HRIS systems have allowed HR to automate a variety of functions, including performance management, training, employee development, staffing, compensation, and benefits, among others. Choose two of these HR functions listed, and describe how technology has created a more efficient process for this function. Provide an example of each.

6. (TCO 6) What should be the key considerations for a small but fast-growing organization that wishes to purchase HRIS?

7. (TCO 7) Some of the employee information in your business has been compromised due to unauthorized access to your HRIS system. What process would you create to address this type of scenario? Examine and explain how you might prevent this from reoccurring

8. (TCO 8) Due to technology, HR’s role has changed dramatically from that of support to strategic partner. Describe how technology inclusion has resulted in HR as a strategic partner. Give an example and explain.

 

"Looking for a Similar Assignment? Get Expert Help at an Amazing Discount!"

AHIMA CEE Curriculum Mapping Domain Subdomain Competency

/in /by

Health Information management
Paper , Order, or Assignment Requirements

AHIMA CEE Curriculum Mapping Domain Subdomain Competency Domain I. Data Content, Structure & Standards (Information Governance) Subdomain I.A. Classification Systems

1. Evaluate, implement and manage electronic applications/systems for clinical classification and coding Domain I. Data Content, Structure & Standards (Information Governance) Subdomain I.A. Classification Systems 4. Evaluate the accuracy of diagnostic and procedural coding Domain I. Data Content, Structure & Standards (Information Governance) Subdomain I.C. Data Governance

2. Evaluate health information systems and data storage design Domain I. Data Content, Structure & Standards (Information Governance) Subdomain I.D. Data Management

3. Manage clinical indices/databases/registries Domain I. Data Content, Structure & Standards (Information Governance) Subdomain I.D. Data Management.

4. Advocate information operability and information exchange Domain I. Data Content, Structure & Standards (Information Governance) Subdomain I.D. Data Management

5. Evaluate data from varying sources to create meaningful presentations

 

"Looking for a Similar Assignment? Get Expert Help at an Amazing Discount!"

What kinds of natural imbalances might affect your region?

/in /by

Topic 1: Equilibrium in Natural Systems
Paper , Order, or Assignment Requirements

When pressures and temperatures become unbalanced in Earth’s atmosphere, it can produce some dramatic effects as the system tries to rebalance itself, or re-equilibrate (reach equilibrium). Many of these changes are things that are witnessed every day on a small scale in the form of weather, such as wind, rain, snow, fog, etc.
Sometimes, however, Earth’s atmosphere experiences very large imbalances which can cause massive and very disruptive change. The extreme weather events of 2011 are good examples of extreme changes in pressure and temperature that required re-balancing (equilibration). Not only did they have environmental impacts, but also disastrous consequences for the hundreds and thousands of people in their wake.
Review the Discussion resources
1. What kinds of natural imbalances might affect your region? (ILLINOIS) What makes your region particularly vulnerable to these imbalances?
2. Provide a specific example of a weather incident/natural disaster that occurred in your area in the past and discuss how the incident was handled by local residents and town/state officials. (PEORIA, IL)
3. What can people in your area do to prepare for a similar incident? (Consider what can be done prior to, during, and after the disaster. Be sure to include specific details using information from the CDC and/or FEMA).
4. Compare your area to that of a classmate. What environmental features do you have in common to produce similar natural disasters OR what features vary, leading to completely different disasters? Would rescue efforts differ as well? (USE THE MIDWEST REGION FOR THIS)
5. What predictions are being made for how climate change will impact either the frequency or intensity of future natural disasters in your area? (Hint: refer to the extreme weather and hurricane resources provided above to find information to support your ideas).

 

"Looking for a Similar Assignment? Get Expert Help at an Amazing Discount!"

how corporate leaders may make improper assumptions related to accounting information systems and the related information.

/in /by

Assignment 1: Information Needs for the AIS-Catherine Owens only
Paper , Order, or Assignment Requirements

For this assignment, research the Internet or Strayer databases for information related to improper assumptions concerning accounting information systems.
Write a six to seven (6-7) page paper in which you:
1. Based on your research, assess how corporate leaders may make improper assumptions related to accounting information systems and the related information. Indicate the most negative potential impacts on business operations related to these assumptions. Provide support for your rationale.
2. Suggest three to four (3-4) ways in which organizational performance may be improved when information is properly managed within a business system. Provide support for your rationale.
3. Evaluate the level of system security (i.e., high, medium, low) needed to ensure information integrity within automated business systems. Provide support for your evaluation.

 

"Looking for a Similar Assignment? Get Expert Help at an Amazing Discount!"

create a security plan for a medium sized health care facility.

/in /by

Information System
Paper , Order, or Assignment Requirements

.Instructions:
There are two parts to this Assignment. Each one will help you better understand how security breaches are handled and give you the opportunity to create a security plan. Creating this security plan will help you understand what is needed to protect data.

Part I
1.Search the internet for news about security breaches in healthcare and other industries in the last three years. Suggested source for the latest breach information from the Office of Civil Rights: Source: HIPAA Privacy,

Security, and Breach Notification Audit Program: United States Department of Health & Human Services. Retrieved from http://www.hhs.gov/ocr/privacy/hipaa/enforcement/audit/index.html

2. Write a critical essay summarizing the two cases. In your summary, identify the principal threats in each of these cases and what could have been done to minimize these threats.

Part II 1.
Using what you learned from Part I, create a security plan for a medium sized health care facility. In your security plan, evaluate how you would approach security threats from both inside and outside the organization. Be sure that you address the following items in your security plan:

a. physical and administrative safeguards: employee education, health information archival and retrieval systems, disaster recovery, storage media

b. access safeguards: authentication, password management

c. network safeguards: cloud computing, mobile devices to deliver health care, firewalls, encryption / decryption

 

"Looking for a Similar Assignment? Get Expert Help at an Amazing Discount!"

The benefits of implementing a new health information technology system

/in /by

The benefits of implementing a new health information technology system
Order instructions

Develop a report of 10–12 pages detailing how information technology systems can be used to analyze organizational data for a healthcare organization.
This should include types of systems where data may be retrieved and how IT and various applications can be used to aggregate and analyze the data to understand issues, identify root causes, and document progress related to implemented changes, patient progress, quality assurance, and compliance.
Make sure to address the following questions:
• With plenty of data stored on computer systems, data should not be a problem, but access to the data and sharing of information may have implications under federal regulations. What precautions might you suggest when handling healthcare data? Be sure to apply current trends in healthcare from proven sources and models.
• Consider the support capabilities of a typical healthcare operation and where employees may access data of various types related to patient needs. What might be accessed, and what controls may be needed to protect patient data?
• From a departmental perspective, consider the role of the health information manager (HIM). What qualifications and experience would be needed for your specific healthcare setting? What functions and role would the HIM have in regard to this organization’s medical records?
• As technology advances, what compliance issues and regulations do healthcare managers at this organization need to be on top of? Consider the impact of falling behind the technology curve not only in terms of productivity but regulatory compliance. What role do the Affordable Care and Patient Protection Acts have on the implementation and use?

 

"Looking for a Similar Assignment? Get Expert Help at an Amazing Discount!"

Describe the key elements of an information system for an MCO.

/in /by

MANAGED CARE ORGANIZATIONS AND INFORMATION TECHNOLOGY
Paper , Order, or Assignment Requirements

The most important function of information technology (IT) for the managed care organization (MCO) is to support the business of the MCO. How the IT department aligns with the operational dynamics of the MCO is a vital management consideration. A well-functioning IT department will help the MCO reduce risk (e.g., costs). The IT department should design, implement, and operate the systems that run the MCO. Efficiency is the hallmark of a good system.
Your task as the manager of the MCO is to determine what the IT department in your organization should consist of, what its function will be, and what critical elements will be turned over to the IT department. Complete the following:
• Describe the key elements of an information system for an MCO. What elements are different than for a physician office or group?
• Describe the technology that you think the MCO would need to operate fully.
• Propose a specific electronic health record (EHR) or electronic medical record (EMR) program that is Health Insurance Portability and Accountability Act (HIPAA) compliant. Describe the essential functions, costs, and projected savings for the MCO.
• Evaluate the strengths and weaknesses of insourcing versus outsourcing your IT needs, and make a final recommendation based on that evaluation.

 

"Looking for a Similar Assignment? Get Expert Help at an Amazing Discount!"

Describe the type of health care organization and the role(s) of the IT professional(s)

/in /by

Healthcare management information system
Paper , Order, or Assignment Requirements

For the Information Systems Integration Project – Part One assignment individual students are required to interview at least one health care IT professional regarding the integration of a health management information system (HMIS) into an existing facility. (AHLTA)

After completing your individual interview(s), compose a 1,000-1,250 word paper that includes the following:
1. Describe the type of health care organization and the role(s) of the IT professional(s) that you interviewed.
2. Explain what HMIS means to the individual(s) and provide a summary of the interview discussion.
3. Discuss the importance of HMIS both within and across health care organizations using examples from the interview(s) that you conducted.
4. Describe the cost, time, and delivery of quality services associated with an HMIS.

 

"Looking for a Similar Assignment? Get Expert Help at an Amazing Discount!"