1 answer

Review the three main statutes that protect our privacy in the healthcare, banking, and credit card...

Question:

Review the three main statutes that protect our privacy in the healthcare, banking, and credit card industries. Those being HIPAA, GLBA, and PCI respectively, including a discussion of how the federal and state governments monitor compliance, fines, and other penalties for non-compliance. Find one case for each regulation that illustrates a government case for non-compliance (e.g. U.S. v. CVS) and discuss the merits of the case.


Answers

cybersecurity preparedness in the securities sector. In the healthcare sector, under HIPAA, the Department of Health and Human Services (HHS) has adopted security standards to protect individually identifiable health information, and has, in recent years, launched audits to assess compliance with HIPAA. The healthcare sector was also a focus of the Cybersecurity Act of 2015, which mandated the development of a Health Care Industry Cybersecurity Task Force, a public-private group to develop recommendations on improving sector cybersecurity. The Task Force issued its report in June 2017, identifying six ‘imperatives’ for improving sector cybersecurity, with concrete recommendations for action under each imperative.

At the federal level, numerous agencies impose cybersecurity standards through a variety of regulatory and enforcement mechanisms. For example, the Federal Information Security Management Act (and implementing guidance) establishes cybersecurity standards for federal government agencies and their contractors.

Similarly, the Gramm-Leach-Bliley Act (GLBA) and the Health Insurance Portability and Accountability Act (HIPAA) (and implementing regulations and agency guidance) require entities in the financial services and health sectors, respectively, to employ technical, administrative and physical safeguards to protect customer information from unauthorised access or use. Several states have also enacted state parallels to the GLBA and HIPAA requirement. The Federal Risk and Authorization Management Program (FedRAMP) is a government-wide programme that provides a standardised approach to security assessments, authorisation and continuous monitoring for companies providing cloud services to federal civilian agencies.

Beyond regulatory standards, many organisations are subject to voluntary standards or are required by contract to comply with cybersecurity requirements. Of particular note, the payment card industry in the United States establishes its own cybersecurity standards (the Payment Card Industry Data Security Standards (PCI-DSS)) that apply to merchants or vendors that process payment card data. The federal government has also focused substantially in recent years on the establishment of voluntary cybersecurity requirements, particularly for critical infrastructure entities, which are generally entities that provide vital services to a large part of the population.

In 2013, President Obama issued Executive Order 13636, ‘Improving Critical Infrastructure Cybersecurity’ to establish a process for the government to create voluntary cybersecurity standards applicable to critical infrastructure entities. Pursuant to this Executive Order, the National Institute of Standards and Technology (NIST) issued a voluntary ‘Cybersecurity Framework’, which provides a risk-based approach to cybersecurity, and references various national and international standards. President Trump’s cybersecurity Executive Order, Executive Order 13800, ‘Strengthening the Cybersecurity of Federal Networks and Critical Infrastructure,’ requires federal agency heads to implement the NIST Cybersecurity Framework, further encouraging broad adoption of the voluntary risk-based standard.

.

Similar Solved Questions

1 answer
For the just completed year, Hanna Company had net income of $66.000. Balances in the company's...
For the just completed year, Hanna Company had net income of $66.000. Balances in the company's current asset and current liability accounts at the beginning and end of the year were as follows: December 31 Beginning of End of Year Year Current assets: Cash Accounts receivable Inventory Prepaid ...
1 answer
Problem 3 Calculate the seepage loss per meter length of the sheet pile as shown in...
Problem 3 Calculate the seepage loss per meter length of the sheet pile as shown in Fig. 3. Given that: H 6 m, H2-1.5 m, and permeability of the soil, k 4x10 cm/sec Sheet pile Water level Water level H2 Soi 2Impervious layer3s Fig. 3 for Problem 3...
1 answer
Required information (The following information applies to the questions displayed below.) Bourne Guitars, a corporation, reported...
Required information (The following information applies to the questions displayed below.) Bourne Guitars, a corporation, reported a $157,000 net $1231 gain for year 6. a. Assuming Bourne reported $50,000 of nonrecaptured net $1231 losses during years 1-5, what amount of Bourne's net $1231 gain ...
1 answer
Match the Infrared Spectrum with its correct letter. Identify what makes it that compound. a. CH3CH2OH...
Match the Infrared Spectrum with its correct letter. Identify what makes it that compound. a. CH3CH2OH b. CH3CHO c. CH3COCH3 d. CH3COOH e. CH3CH2NH2...
1 answer
Scenario: On January 20, 2018, Sasha Smith, the accountant for Ward Enterprises, is feeling pressure to...
Scenario: On January 20, 2018, Sasha Smith, the accountant for Ward Enterprises, is feeling pressure to complete the annual financial statements. The CFO has said he needs an up-to-date financial statement to share with the bank on January 21st at an evening meeting that has been called to discuss W...
1 answer
1 points QUESTION 49 If a firm is producing an output rate at which marginal cost...
1 points QUESTION 49 If a firm is producing an output rate at which marginal cost is equal price, the firm is maximizing profits. should reduce its output level. will not be covering its fixed cost. should increase its output level. 1 points QUESTION 50 Which of the following is NOT a characteristic...
1 answer
The financial system refers to:
the financial system refers to:...
1 answer
42. The supervisor must be consulted before the Homemaker may: a. make a bed b. cut...
42. The supervisor must be consulted before the Homemaker may: a. make a bed b. cut a client's toe nails c. prepare a meal d. start a load of laundry...
1 answer
Predict The major product for the following reaction
Predict The major product for the following reaction...
1 answer
A sports psychologist tested whether the number of team wins in the previous season can predict...
A sports psychologist tested whether the number of team wins in the previous season can predict the number of wins in the following season in a sample of 35 teams. Complete the regression table for this hypothetical study. (Round your value for Fobt to two decimal places.) Source of Variation S...
1 answer
When ultraviolet light with a wavelength of 400nmfalls on a certain metal surface, the maximum kinetic...
When ultraviolet light with a wavelength of 400nmfalls on a certain metal surface, the maximum kinetic energy of the emitted photoelectrons is 1.10eV . What is the maximum kinetic energy K0 of the photoelectrons when light of wavelength 270nm falls on the same surface?...
1 answer
How do you multiply #(2x^2 - 5x +10)(x+4)#?
How do you multiply #(2x^2 - 5x +10)(x+4)#?...
1 answer
Debate the importance for a nurse educator to be able to prepare, manage, and evaluate a...
Debate the importance for a nurse educator to be able to prepare, manage, and evaluate a budget of an education program....
1 answer
A line segment goes from #(4 ,1 )# to #(2 ,3 )#. The line segment is dilated about #(2 ,2 )# by a factor of #2#. Then the line segment is reflected across the lines #x = -2# and #y=4#, in that order. How far are the new endpoints form the origin?
A line segment goes from #(4 ,1 )# to #(2 ,3 )#. The line segment is dilated about #(2 ,2 )# by a factor of #2#. Then the line segment is reflected across the lines #x = -2# and #y=4#, in that order. How far are the new endpoints form the origin?...
1 answer
1. Operating Budgets (50 points) Lubriderm Corporation has the following budgeted unit sales for the next...
1. Operating Budgets (50 points) Lubriderm Corporation has the following budgeted unit sales for the next six-month period: Month June July August September October November Unit Sales 90,000 120,000 210,000 150,000 180,000 120,000 There were 30,000 units of finished goods in inventory at the beginn...
1 answer
Response Questions Part A To C Assume the simple spending multiplier equals 10. Determine the size...
Response Questions Part A To C Assume the simple spending multiplier equals 10. Determine the size and direction of any changes of the aggregate expenditure line, real GDP demanded, and the aggregate demand curve for each of the following: A) Spending rises by $8 billion at each spending level B) Sp...
1 answer
You are considering investing $1000 in a complete portfolio. The complete portfolio is composed of Treasury...
You are considering investing $1000 in a complete portfolio. The complete portfolio is composed of Treasury notes that pay 5% and a risky portfolio, P, constructed with two risky securities X and Y. The optimal weights of X and Y in P are 60% and 40% respectively. X has an expected rate of return of...