devry HIM370 week 6 quiz




Question;(TCO 9) Which of the following should be included within;your training and awareness strategy?;A strategy to use marketing techniques to;raise training budget.;An identification of states to create;preemption procedures.;A procedure for measuring the overall;effectiveness of the awareness and education program.;A procedure for answering complaints related;to HIPAA compliance.;None of the above;Question 2. Question;(TCO 5) Access controls consist of;identification.;authentication.;authorization.;All of the above;None of the above;Question 3. Question;(TCO 6) What is the order HIPAA recommends an organization;follow when responding to and reporting a security incident?;Identify and respond to incidents, mitigate;harmful effects, and document incidents and outcomes.;Document incidents and outcomes, identify and;respond to incidents, and mitigate harmful effects.;Mitigate harmful effects, document incidents;and outcomes, identify and respond to incidents.;None of the above;Question 4. Question;(TCO 6) What should be in place prior to responding to an;incident?;A disaster recovery plan and an expert team;A formal response procedure and an expert team;A contingency plan and an expert team;None of the above;Question 5. Question;(TCO 6) What is the difference between an incremental and differential;backup?;Incremental does not mark the files as being;backed up.;Differential does not mark the files as being;backed up.;Incremental backs up files that have not;changed.;Differential backs up files that have not;changed.;None of the above;Question 6. Question;(TCO 5) To address backup and storage requirements, an;organization should;implement procedures for removal of electronic;protected health information from electronic media before the media are made;available for reuse.;develop policies and procedures to address the;final disposition of electronic protected health information and/or hardware of;electronic media.;create a retrievable, exact copy of electronic;protected health information, when needed, before movement of equipment.;determine appropriate storage requirements for;the media.;None of the above


