devry HIM370 week 4 quiz

(TCO 4) A gap analysis and risk analysis should be performed to:

determine current and baseline compliance status.

determine baseline and monetary compliance.

determine PHI standards.

INCORRECT determine risk level.

None of the above

Question 2. Question :

(TCO 4) The Security Rule requires healthcare managers to perform an initial risk analysis to determine which of the following?

Specific unauthorized uses

Disclosures

Data integrity losses that could occur to PHI

All of the above

None of the above

:

Question 3. Question :

(TCO 4) The outcome of a risk analysis is dependent upon which of the following?

Results that the organization wants in return

The management of the organization’s risks

Efforts to maintain reasonable security measures

What an organization wants to protect

None of the above

Instructor Explanation: Chapter 12, page 183

Question 4. Question :

(TCO 3) Which item is most appropriate to develop checklist items to determine security violations for computer log-in monitoring?

: Procedures for creating, changing, and safeguarding passwords

Procedures for monitoring log-in attempts and reporting discrepancies

Periodic security updates

All of the above

None of the above

Question 5. Question :

(TCO 3) What is a standard?

provides fewer supporting details for meeting policy requirements

provides supporting details for meeting policy requirements

provides details on how the policy will be implemented

provides details on the organization's position

None of the above

Instructor Explanation: Chapter 13, Page 186

Points Received: 5 of 5

Comments:

Question 6. Question :

(TCOS 3 and 7) Select the appropriate guideline for dealing with medical information requests.

Make sure it is an unsecured telephone line.

Verify caller’s medical information.

Do not supply information unless there is written patient consent.

Provide medical information without patient consent.

None of the above