Class: Electronic Data Security Assignment: Written Assignment – Site Analysis Note: This is a Survey not a paper. Please use a Survey format on this assignment. While it may be difficult to learn all
Class: Electronic Data Security
Assignment: Written Assignment – Site Analysis
Note: This is a Survey not a paper. Please use a Survey format on this assignment.
While it may be difficult to learn all of the ways that criminals may attack a website, awareness and preparation can go a long way towards mitigating the damage caused by hackers. An important first step to preventing problems is selecting software carefully and with security in mind.
Consider the scenario that you are working as an IT Director for a hospital considering the selection of a web-based electronic health record (EHR) system. Using both your understanding of the architecture behind web applications and your awareness of some of the many ways web applications are attacked, prepare a survey or list of questions that can be asked of EHR vendors who are presenting demonstrations and sales pitches regarding their web-based EHR products. The answers to these questions will be used to compare the EHRs you are considering in terms of how well they would protect patient data from theft, denial of service, or other kinds of compromise.Your survey should include the following criteria:
- Contain open-ended questions – Do not just ask “yes” or “no” questions.
- Be specific in terms of types of attack protected against.
- Be specific in terms of architecture components.
- Be sure that your questions specifically address the Web-Based security considerations of the EHR.
- Be 1-2 pages in length, double-spaced,
- Be free of spelling, grammar, and punctuation errors.
TIP: The second written assignment has you working on a site analysis for a hypothetical web-based EHR. What kind of questions would you ask a vendor that was trying to sell you an EHR that was online or in the cloud? This assignment is focused on the SECURITY of the product – be sure to review the Rubric! There should only be questions regarding Security of a Web-Based EHR, we are not looking for questions on any other functionality of the EHR – do not just go and find questions that would work for any generic EHR or you will not do well on this assignment. You can submit 50 questions in your assignment but if they do not address the types of questions asked for in the rubric, they will not count for points! The reading in the Lesson Content this week will be helpful in this assignment. Be sure to email me with questions.