Disaster Recovery
The Admitting System Crashes
Patricia Hampton
Dr. Allen
HSA315
August 24, 2011
Identify at least three steps that the CIO could have taken to reduce the likelihood of the system failure. The chief information officer is the executive who manages the IT department and leads the organization in their efforts to develop and advance IT strategies. The role of the CIO in health care organizations is to: set visions and strategies, integrate information technology for business success, and make changes when necessary, build technological confidence, partner with customers, ensure information technology talent, and build networks and community. They should also establish and maintain good working relationships with the members of the organization’s leadership team and communicate IT performance. It is the CIO’s job to manage and led the IT department to achieve organizational excellence and success (Wager, Lee, & Glaser, 2009). When it comes to the disaster recovery case study, three steps the CIO could have taken to reduce the likelihood of the system failure are; risk analysis, risk management lead by the chief security officer, and security system evaluation. These three activities are part of the organizations administrative safeguards that can be used to improve the HCO’s information security program (Wager, Lee, & Glaser, 2009). Risk analysis and management process has eight steps; boundary definition, vulnerability identification, security control analysis, risk likelihood determination, impact analysis, risk determination, and security control recommendations. Through the risk analysis, policies and procedure are developed and a security risk management program is put in place. The CSO, chief security officer, is in charge if administering and managing the program. Security system evaluations should be periodically performed, by the CSO, to evaluate the risk currently no adopted technical security standards designed for health care
Patricia Hampton
Dr. Allen
HSA315
August 24, 2011
Identify at least three steps that the CIO could have taken to reduce the likelihood of the system failure. The chief information officer is the executive who manages the IT department and leads the organization in their efforts to develop and advance IT strategies. The role of the CIO in health care organizations is to: set visions and strategies, integrate information technology for business success, and make changes when necessary, build technological confidence, partner with customers, ensure information technology talent, and build networks and community. They should also establish and maintain good working relationships with the members of the organization’s leadership team and communicate IT performance. It is the CIO’s job to manage and led the IT department to achieve organizational excellence and success (Wager, Lee, & Glaser, 2009). When it comes to the disaster recovery case study, three steps the CIO could have taken to reduce the likelihood of the system failure are; risk analysis, risk management lead by the chief security officer, and security system evaluation. These three activities are part of the organizations administrative safeguards that can be used to improve the HCO’s information security program (Wager, Lee, & Glaser, 2009). Risk analysis and management process has eight steps; boundary definition, vulnerability identification, security control analysis, risk likelihood determination, impact analysis, risk determination, and security control recommendations. Through the risk analysis, policies and procedure are developed and a security risk management program is put in place. The CSO, chief security officer, is in charge if administering and managing the program. Security system evaluations should be periodically performed, by the CSO, to evaluate the risk currently no adopted technical security standards designed for health care
References: Bellinger, G. (2004). Root cause analysis. Retrieved on August 16, 2011 from http://systems-thinking.org/rca/rootca.htm. Shimonski, R. (2009). High availability: disaster recovery planning. Retrieved on August 17, 2011 from http://www.windowsnetworking.com/articles_tutorials/High-Availablity-Disaster-Recovery-Planning.html. Wager, K. A., Lee, F. W., & Glaser, J. P. (2009). Healthcare information systems: A practical approach for health care management (2nd ed.). San Francisco: Jossey- Bass.