CSEC 630 Final Exam Part 1
CSEC 630 FINAL Exam Spring 2015
DUE by 11:59 PM EST Sunday April 26, 2015
100 points
This examination is worth 20 percent of your total grade. There are five semi open ended questions (worth 70 points) along with an accompanying cyber security action plan template (worth 30 points). You are to answer each of the five questions and to complete the Cyber Security Action Plan template based on best practices and your understanding of the case.
Please refer to the FAQ concerning the maximum length answer for each question.You are to use references where appropriate but are not required to use APA formatting. For the open ended questions you are to provide your answers immediately follow the question as follows:
1. Describe… Response
2. Discuss…
Response
And so forth…
ABC HEALTHCARE CASE BACKGROUND
Healthcare companies, like ABC Healthcare, that operate as for-profit entities, are facing a multitude of challenges. The regulatory environment is becoming more restrictive, viruses and worms are growing more pervasive and damaging, and ABC Healthcare’s stakeholders are demanding more flexible access to their systems.
The healthcare industry is experiencing significant regulatory pressures that mandate prudent information security and systems management practices.
Furthermore, the continued pressure to reduce cost requires that management focus on streamlining operations, reducing management overhead and minimizing human intervention. The regulatory focus at ABC Healthcare is on the Health Insurance Portability and Accountability Act (HIPAA) and Sarbanes-Oxley (SOX). Both pieces of legislation highlight the need for good systems administration and controls, but focus on different aspects of the business. The main focus of HIPAA is to protect personally identifiable health information while SOX is concerned with data that impacts financial reporting. Violations may be met with both civil and criminal penalties. Therefore, the company must be ever
DUE by 11:59 PM EST Sunday April 26, 2015
100 points
This examination is worth 20 percent of your total grade. There are five semi open ended questions (worth 70 points) along with an accompanying cyber security action plan template (worth 30 points). You are to answer each of the five questions and to complete the Cyber Security Action Plan template based on best practices and your understanding of the case.
Please refer to the FAQ concerning the maximum length answer for each question.You are to use references where appropriate but are not required to use APA formatting. For the open ended questions you are to provide your answers immediately follow the question as follows:
1. Describe… Response
2. Discuss…
Response
And so forth…
ABC HEALTHCARE CASE BACKGROUND
Healthcare companies, like ABC Healthcare, that operate as for-profit entities, are facing a multitude of challenges. The regulatory environment is becoming more restrictive, viruses and worms are growing more pervasive and damaging, and ABC Healthcare’s stakeholders are demanding more flexible access to their systems.
The healthcare industry is experiencing significant regulatory pressures that mandate prudent information security and systems management practices.
Furthermore, the continued pressure to reduce cost requires that management focus on streamlining operations, reducing management overhead and minimizing human intervention. The regulatory focus at ABC Healthcare is on the Health Insurance Portability and Accountability Act (HIPAA) and Sarbanes-Oxley (SOX). Both pieces of legislation highlight the need for good systems administration and controls, but focus on different aspects of the business. The main focus of HIPAA is to protect personally identifiable health information while SOX is concerned with data that impacts financial reporting. Violations may be met with both civil and criminal penalties. Therefore, the company must be ever