You are an information security consultant hired by a healthcare system consisting of hospitals,clinics, and electronic health record (EHR) systems. The organization is concerned about the security of patient health information and the potential for cyber threats targeting healthcare data. Your task is to develop and implement information security measures to safeguard patient confidentiality and the integrityof healthcare systems.1. Electronic Health Record (EHR) Security Assessment: Conduct a comprehensive security assessment of the EHR systems used within the healthcare system. Identify potential vulnerabilities and risks associated with unauthorized access, data breaches, and malware. Propose security measures such as access controls, encryption, and regular security audits.2. Medical Device Security: Evaluate the security of medical devices connected to the healthcare system, such as infusion pumps and patient monitoring devices. Recommend measures to secure these devices, including network segmentation, firmware updates, and the implementationof security controls to prevent unauthorized access.3. Phishing Awareness and Training: Develop a phishing awareness and training program for healthcare staff. Address the risks of phishing attacks targeting employees and discuss strategiesfor recognizing and avoiding phishing attempts. Emphasize the importance of reporting suspicious emails promptly.4. Mobile Device Security for Healthcare Professionals: Assess the security of mobile devices used by healthcare professionals, including smartphones and tablets. Recommend measures such as mobile device management (MDM), encryption, and secure communication practices to protect patient information accessed via mobile devices.5. Telehealth Security: Evaluate the security of telehealth platforms used for virtual patient consultations. Propose security measures to protect patient privacy during telehealth sessions, including secure video conferencing, data encryption, and authentication controls. Address potential risks associated with virtual healthcare delivery.Your assignment must follow these formatting requirements: Be typed, double spaced, using Times New Roman font (size 12), with one-inch margins on all sides; citations and references must follow APA or school-specific format. Check with your professor for any additional instructions. Include a cover page containing the title of the assignment, the student’s name, the professor’s name, the course title, and the date. The cover page and the reference page are not included in the required assignment page length.The specific course learning outcomes associated with this assignment are: Compare and contrast the methods of disaster recovery and business continuity.
Explain risk management in the context of information security. Use technology and information resources to research issues in disaster recovery. Write clearly and concisely about disaster recovery topics using proper writing mechanics and technical style conventions.Grading for this assignment will be based on answer quality, logic / organization of the paper, and language and writing skills, using the following rubric