Administrative Safeguards
From Clinfowiki
Revision as of 06:17, 11 October 2014 by Annathehybrid (Talk | contribs)
Administrative safeguards refers to measures put in place to secure and protect the computer hardware and information from external threats.
Questions that need to be considered in building administrative safeguards
- Terminals can not be used or viewed by unauthorized users?
- Workstations in publicly-accessible areas log off if left idle?
- Evidence of physical security for all system hardware components?
- Remote access to clinical applications is secured via 2-factor authentication?
- All patient-identifiable information that is transmitted outside the organization should be encrypted?
- Record of the ratio of user-initiated system logouts to total system logouts?
- % of workstations with up-to-date virus protection software?
- “Recycling” bins for paper/print-outs containing patient-identifiable data should be made of metal and be locked?
- All system hardware kept in locked rooms and portable devices secured?