As the liaison between your hospital and potential vendors, it is your duty to provide vendors with an

As the liaison between your hospital and potential vendors, it is your duty to provide vendors with an overview of your organization. Work with your teammates to establish information about your hospital. Conduct independent research on hospital database management. Think about the hospital's different organizational needs. What groups or individuals will use the database, and for what purposes?To be completed by a designated team member:Discuss the types of data that may be stored in the system, and discuss the importance of keeping this data secure. Include this information in the RFP.After the overview is complete, move to the next step, where the team will provide context for the vendors with an overview of needs.
Now that the team has provided vendors with an overview of your hospital’s needs, you will provide the vendors with a context for the work that is needed.To be completed by a designated team member:Provide the context of the work that is being asked for. You are closest to the application and implementation, and you are giving guidance to the vendors by determining the attributes of the database and describing the environment in which it would be operable.It is important to understand the vulnerability of a relational database management system (RDBMS). To that end, read about security concerns common to all RDBMSs. Then, provide the security concepts and concerns for databases. As a standard, the database with the information for medical personnel and emergency responders needs to identify at least three, no more than five, security assurance and security functional requirements of the database. Include this in the RFP.In the next step, the team will provide security standards for the vendors.
In the previous step, the team provided context for tasks in the RFP. In this step, the team will provide a set of internationally recognized standards for the competing vendors to incorporate into the manufacturing of the database and security mechanisms.These standards will serve additionally as metrics of security performance to measure the security processes incorporated in the product. To prepare, read the following resources:

• Database Models
• Common Criteria (CC) for information technology security evaluation
• evaluated assurance levels (EALs)
• continuity of service

To be completed by a designated team member:Address the concepts and issues with respect to disasters and disaster recovery, mission continuity, threats, and cyberattacks. Include this in the RFP.In the next step, the team will describe defense models for the RFP.