Business Continuity and HIPAA Business Continuity Management in the Health Care Environment [Electronic resources] نسخه متنی

اینجــــا یک کتابخانه دیجیتالی است

با بیش از 100000 منبع الکترونیکی رایگان به زبان فارسی ، عربی و انگلیسی

Business Continuity and HIPAA Business Continuity Management in the Health Care Environment [Electronic resources] - نسخه متنی

Jim Barnes

| نمايش فراداده ، افزودن یک نقد و بررسی
افزودن به کتابخانه شخصی
ارسال به دوستان
جستجو در متن کتاب
بیشتر
تنظیمات قلم

فونت

اندازه قلم

+ - پیش فرض

حالت نمایش

روز نیمروز شب
جستجو در لغت نامه
بیشتر
لیست موضوعات
توضیحات
افزودن یادداشت جدید







MAJOR ELEMENTS OF A BUSINESS CONTINUITY PLAN

The following major elements must be addressed in a business continuity plan so that the continuity of business operations is assured:


General Elements




Management backup and succession procedures.



Procedures for a smooth and effective implementation of the business continuity plan to cover emergency conditions.



Assessment of the impact of emergency conditions and the loss of information processing and tele/data communications support on the critical functions of the corporation.



Employment of methods to reduce risk to a prudent level.



Establishment of and familiarity with an emergency voice and data communications plan.



Facilities and manpower requirements.



Program for cross-training staff members to provide flexibility of assignment in times of emergency.



Semi-annual review and update of the business continuity plan to assure its relevance and adequacy.



Periodic testing, at least annually, of business continuity plans in order to demonstrate and document their continued efficacy.




Information Services and Data/Voice Communications Element




Information backup, recovery, and restoration procedures, including a vital records storage program.



Provisions for securing off-site backup of critical data files, software, documentation, forms and supplies.



Alternate means of processing work and maintaining services electronically and/or manually, including provision for needed off-site hardware, premises, and any other resource items.



Equipment backup and repair.



Electrical power backup.



Communications backup including provisions for voice and data services.

The Board of Directors of Typical Healthcare Organization will annually review and approve management's assessment of how emergency conditions or a loss of information services support would impact operations and the methods to be employed to reduce or eliminate such risk and/or impact. The annual review and approval will be noted in the minutes of Typical Healthcare Organization Board of Directors.



Having the policy statement approved and adopted by the executive levels of the healthcare organization will facilitate your ability to complete the remainder of the planning project. Not only that, this statement will be instrumental in making the business continuity planning process a program, not just a one-time study. If you can get this document through your senior management, then you have a pretty good indication that you have their buy-in.

At some point in time, I would suspect that more scrutiny in the form of inspections by regulators will be incorporated into the HIPAA structure. Having a solid policy statement sends a strong message that a real business continuity planning (contingency planning) program exists within this healthcare organization.

/ 90