Business Continuity and HIPAA Business Continuity Management in the Health Care Environment [Electronic resources] نسخه متنی

اینجــــا یک کتابخانه دیجیتالی است

با بیش از 100000 منبع الکترونیکی رایگان به زبان فارسی ، عربی و انگلیسی

جستجو بر اساس ... همه عنوان پدیدآور موضوع یادداشت تمام متن
اصطلاحنامه مجموعه ها مرورالفبایی لغت نامه دهخدا
جستجو در لغت نامه
بیشتر
کتابخانه شخصی پرسش از کتابدار ارسال منبع

Business Continuity and HIPAA Business Continuity Management in the Health Care Environment [Electronic resources] - نسخه متنی

Jim Barnes

| نمايش فراداده ، افزودن یک نقد و بررسی
افزودن به کتابخانه شخصی
میخواهم بخوانم
درحال خواندن
خوانده شده
ارسال به دوستان

آدرس پست الکترونیک گیرنده :

آدرس پست الکترونیک فرستنده :

نام و نام خانوارگی فرستنده :

پیغام برای گیرنده ( حداکثر 250 حرف ) :

کد امنیتی را وارد نمایید

ارسال
جستجو در متن کتاب
بیشتر
تنظیمات قلم

فونت

اندازه قلم

+ - پیش فرض

حالت نمایش

روز نیمروز شب
جستجو در لغت نامه
بیشتر
لیست موضوعات

Sitemap

Table of Contents

BackCover

Business Continuity and HIPAA-Business Continuity Management in the Health Care Environment

Preface

Foreword

Foreword by the Business Continuity Institute (BCI)

Foreword by the Disaster Recovery Institute International (DRII)

Foreword to the 2nd Edition

Introduction

Chapter 1: Business Continuity Planning and HIPAA

Chapter 2: Project Foundation

BUSINESS CONTINUITY PLANNING EVALUATION

SURVEYS

PRE-PROJECT QUESTIONNAIRE

POLICY STATEMENT

EMERGENCY CONDITIONS

BUSINESS CONTINUITY PLANNING

RESPONSIBILITIES OF MANAGMENT

MAJOR ELEMENTS OF A BUSINESS CONTINUITY PLAN

DATA REQUESTS

KICK-OFF MEETING

Chapter 3: Business Assessment

ASSESSING THE BUSINESS

BUSINESS IMPACT ANALYSIS (BIA)

BUSINESS IMPACT ANALYSIS QUESTIONNAIRE

Chapter 4: Strategy Selection

STRATEGY SELECTION

COMPUTER CENTER RECOVERY

" TRADITIONAL " STRATEGIES

DATA RECOVERY

OTHER COMPONENT RECOVERY

CONCEPTUAL COMPONENT BUSINESS MODEL

COMMUNICATIONS RECOVERY

DATA COMMUNICATIONS

FACILITIES RECOVERY

POWER

STAFF RECOVERY

VENDOR SELECTION

CUSTOMER RELATIONS

PATIENT SERVICES

PLAN STRATEGIES

PLAN FUNDING

Chapter 5: Plan Development

TEAMS

ACTION PLAN BY TEAM

SERVICES PRIORITY ORDER

PROCEDURES TASKS AND SCHEDULES

DAMAGE ASSESSMENT FORM

PUBLIC COMMUNICATIONS TEAM

PUBLIC COMMUNICATIONS TEAM SUCCESSION LIST

DAMAGE ASSESSMENT FORM

RESOURCE ITEM MATRIX

Chapter 6: Testing and Maintenance

MAINTENANCE

Appendix 1: Disaster Recovery Journal Survey Results http://www.Drj.Com

Appendix 2: Sample Bia Management Summary Report

STRENGTHS AND CONCERNS

Appendix 3: Request For Proposal-ABCD Company Request for Proposal

II PROPOSAL PREPARATION/SUBMISSION

III VENDOR INSTRUCTIONS

IV TECHNICAL SPECIFICATIONS AND REQUIREMENTS

Appendix 4: Vendor Listing

Appendix 5: Test Plan Example

II TEST OBJECTIVES

III TEST EXIT/POST TEST AUDIT

Appendix 6: Management Presentation

Glossary

B

C

D

E

F

G

H

I

J-K

L

M

N

O

P-Q

R

S

T

U

V

W

X-Z

List of Sidebars
توضیحات
افزودن یادداشت جدید









Glossary


The following is a glossary of terms used with HIPAA, Business Continuity Planning, and with IT Security.




A



Accredited Standards Committee (ASC)


A healthcare organization that has been accredited by ANSI for the development of American National Standards.





ACD (Automatic Call Distribution)


The routing of an incoming telephone call to the next available operator.





ACG


Ambulatory Care Group.





Activation


The implementation of business continuity capabilities, procedures, activities, and plans in response to an emergency or disaster declaration; the execution of the recovery plan.





ADG


Ambulatory Diagnostic Group.





Administrative Code Sets


Code sets that characterize a general business situation, rather than a medical condition or service. Under HIPAA, these are sometimes referred to as non-clinical or non-medical code sets. Compare to medical code sets.





Administrative Services Only (ASO)


An arrangement whereby a self-insured entity contracts with a Third Party Administrator (TPA) to administer a health plan.





Administrative Simplification (A/S)


Title II, Subtitle F, of HIPAA, which gives HHS the authority to mandate the use of standards for the electronic exchange of health care data; to specify what medical and administrative code sets should be used within those standards; to require the use of national identification systems for health care patients, providers, payers (or plans), and employers (or sponsors); and to specify the types of measures required to protect the security and privacy of personally identifiable health care information. This is also the name of Title II, Subtitle F, Part C of HIPAA.





Alert


Notification that a potential disaster situation exists or has occurred; direction for recipient to stand by for possible activation of disaster recovery plan.





Alternate Site


An alternate operating location to be used by business functions when the primary facilities are inaccessible. 1) Another location, computer center or work area designated for recovery. 2) Location, other than the main facility, that can be used to conduct business functions. 3) A location, other than the normal facility, used to process data and/or conduct critical business functions in the event of a disaster.





Alternate Work Area


Office recovery environment complete with necessary office infrastructure (desk, telephone, workstation, and associated hardware, communications, etc.); also referred to as Work Space or Alternative work site.





Ambulatory Payment Class (APC)


A payment type for outpatient PPS claims.





Amendments and Corrections


In the final privacy rule, an amendment to a record would indicate that the data is in dispute while retaining the original information, while a correction to a record would alter or replace the original record.





American Association for Homecare (AAHomecare)


An industry association for the home care industry, including home IV therapy, home medical services and manufacturers, and home health providers. AAHomecare was created through the merger of the Health Industry Distributors Association's Home Care Division (HIDA Home Care), the Home Health Services and Staffing Association (HHSSA), and the National Association for Medical Equipment Services (NAMES).





American Dental Association (ADA)


A professional healthcare organization for dentists. The ADA maintains a hardcopy dental claim form and the associated claim submission specifications, and also maintains the Current Dental Terminology (CDT _) medical code set. The ADA and the Dental Content Committee (DeCC), which it hosts, have formal consultative roles under HIPAA.





American Health Information Management Association (AHIMA)


An association of health information management professionals. AHIMA sponsors some HIPAA educational seminars.





American Hospital Association (AHA)


A health care industry association that represents the concerns of institutional providers. The AHA hosts the NUBC, which has a formal consultative role under HIPAA.





American Medical Association (AMA)


A professional healthcare organization for physicians. The MA is the secretariat of the NUCC, which has a formal consultative role under HIPAA. The AMA also maintains the Current Procedural Terminology (CPT _) medical code set.





American Medical Informatics Association (AMIA)


A professional healthcare organization that promotes the development and use of medical informatics for patient care, teaching, research, and health care administration.





American National Standards (ANS)


Standards developed and approved by healthcare organizations accredited by ANSI.





American National Standards Institute (ANSI)


A healthcare organization that accredits various standards-setting committees, and monitors their compliance with the open rule-making process that they must follow to qualify for ANSI accreditation. HIPAA prescribes that the standards mandated under it be developed by ANSI-accredited bodies whenever practical.





American Society for Testing and Materials (ASTM)


A standards group that has published general guidelines for the development of standards, including those for health care identifiers. ASTM Committee E31 on Healthcare Informatics develops standards on information used within healthcare.





Application recovery


The component of disaster recovery and testing which deals specifically with the restoration of business system software and data, after the processing platform has been restored or replaced.





ASPIRE


AFEHCT's Administrative Simplification Print Image Research Effort work group.





Association for Electronic Health Care Transactions (AFEHCT)


A healthcare organization that promotes the use of EDI in the health care industry.





ASTM


See also American Society for Testing and Materials (ASTM).





Auto-Response IDS


Many intrusion detection systems can be set up to automatically respond with some predefined set of activities upon detection of specified events. In this case some reasonable assessment process must be carried out ahead of the incident. The business impact of highly malicious events is pre-assessed and it is decided that the cost of a false positive is outweighed by the impact of a successful occurrence of the specified event. For example it may be better to block the source IP address (es) when an obvious denial of service is detected. Some intrusion detection systems can change the access control lists in a filtering router to block or shun addresses. Then again some of those source addresses could be faked, spoofing some business partners, which would then be creating its own denial of service. Management would want to be notified of this auto-response, assess business impact and whether some other longer-term response is necessary (e.g. track back to real source and work with ISPs to close attack down).







/ 90