Information Security at Al Nahda Hospital Essay

Information Security at Al Nahda Hospital - attempt ExampleThis is because internet users are potential customers and suppliers, and potential threats, as well. In case reading stored in the hospital premises is tampered with, serious, adverse effects whitethorn result, because there are so many people who are dependent on this information. It is the responsibility of management to liaise with other departments to protect an organizations information assets. This report analyses and evaluates information security at Al Nahda Hospital. In this report, the main categories of information assets that may be at chance and have to be protected have been described. The report also appraises the actual and potential threats and vulnerabilities of Al Nahda Hospitals information assets. The report then formulates a security visualize that describes counter measures that will manage the threats that put Al Nahda Hospitals information assets at risk from a risk management perspective. A wo rldwide information security education and awareness program for use by management, staff and contractors for Al Nahda Hospital is also provided in this report. The report also explores the social, legal, and estimable issues or constraints that may be associated with the implementation of the comprehensive information security plan at Al Nahda Hospital. Finally, the report recommends valid actions that go off be taken to improve the information security situation of Al Nahda Hospital. Introduction Al Nahda Hospital is a government hospital which is located in Oman. The hospital has a client server application called Health Information Management system (HIMS) on a local network. It also has applications that have been developed with oracle database, forms and reports. Al Nahda Hospitals medical staff users can access and use the system from a local network using desktops, Personal Computers, or they can use laptops with WIFI, during wards round. Also, this system is connected to the headquarters with MPLS line. Users have access to both the operating system username and password and the database username and password. After a careful assessment of the information security situation, a security plan for the protection of the information holdings of the Al Nahda Hospital is required. The security plan will ensure that the security personnel cope the security of information from deliberate and accidental threats to the hospital so as to improve Al Nahda Hospitals information security. 1.0 Main Categories of Information Assets that may be at Risk and have to be protected Al Nahda Hospitals information assets may be at risk, as off the beaten track(predicate) as the information status is concerned. These assets may be categorized into information assets, software, hardware, systems and people. 1.1 Information Assets Information assets of Al Nahda Hospital that may be at risk and need to be protected include documented information. Documented information conta ins both printed or written information and electronic information stored on the hospitals servers, website, extranets and internets. Electronic information can be stored in laptops, personal computers, cell phones, CD ROM and USB sticks, among other devices. The information that may be jeopardise