HIPPA-observe for the tool of Security. was developed by RiskWatch which a company founded in Maryland (US) in 1993. The tool is designed to help of the companies by the analysis of risk of the USA to the conformity of unquestionable standardization of the USA. Its engine of analysis of risk is inserted in the product and is composed of four phases. Phase I helps of the users with establishing borders of case of conformity, and values of phase II are defined, of the questions of audit are created, and the guarantors are determined in order to formulate borders. Phase III and IV relates to the evaluation and the report.
Phase III launches the engine of analysis of risk and carries out the evaluation. Clearly the preparation with the evaluation is much longer than operation the engine of evaluation. Before you however run really the evaluation, HIPAA-Observe allows you to review the bonds created between the categories of capital with categories of loss. If you must change the recommendations of defect for the bonds between the categories of capital and the categories of loss, it is simple to make the modification. You uncheck simply the capital which is not inclined the type of loss indicated. For example, the provisioning and the consumable ones are probable noninclined revelation data and should not thus be dependent. The diagram 4 shows how capital is related to the losses.
In phase III, you decide which calculations you want to calculate based on the reports/ratios of the threats, the capital, of the vulnerabilities, and on serious on the potential incidents.
Phase IV product of a final report which has a series of options which can be included. The options include
* a general summary
* recommendations for vulnerabilities of resolution
* a full report/ratio of capital
* a summary by report/ratio of capital
* a full report/ratio of threat
* a summary by report/ratio of threat
* a full report/ratio of vulnerability
* a report/ratio of distribution of vulnerability
* a full report/ratio of safeguard
* a report/ratio of the costs and outputs
* a report/ratio of threat of safeguard
* a report/ratio of question of recording of audit
* a report/ratio of guarantor of recording of audit
The reports/ratios produce Camembert cheeses of color and histograms and can be saved in Rich Text Format (rtf) or the format of Microsoft Word. While the reports/ratios are talkative in their recommendations, the majority of the organizations will want with
Suitable technologies would like to see that the esthetics of the user interface improved in HIPAA-Observe for Security. The technology of the tool if is sophisticated, this product deserves a user interface with the esthetics of edge and a glance of head of avant-garde. While the graphic design and the engine existing of report are proportioned, it could be transformed into a feeling of the market if the realizers enlisted the assistance of an artist signal-notch of design. Suitable technologies believes that the software is art, and when a product excels, we expect that the glance and to feel it him also excels. The glance and the feeling of HIPAA-Observe for Security. is basic and for this reason, by means of it cannot obtain as much oos and ahs while it could differently receive given its possibilities.
Suitable technologies would prefer to see the questions of outline expressed in the form of true interrogative sentence instead of a relationship with a question mark at the end. For example, instead of access to the data of newspaper system is limited to the approved personnel? , we would prefer the question to be, expressed is access to the data of newspaper system limited to the approved personnel? However, him 's right to say that the questions of outline which exist are certainly on the matter and convenient with one audit of HIPAA.
Since the values of LAFE vary according to the geographical place, suitable technologies would like to see this automated device so that when you put in your organization 'postal code of S, the values of LAFE are automatically adjusted. For example, if your organization is in Omaha, Nbraska (US), you would have a probability more raised much tornadoes which if your organization is in Portland, Maine (US). Today the watch of HIPAA for Security. allows you to adjust these values manually, however, this supposes that you know that what to be the adjustment would owe and it can take a certain time to you to look it to the top and to discover.
Phase III launches the engine of analysis of risk and carries out the evaluation. Clearly the preparation with the evaluation is much longer than operation the engine of evaluation. Before you however run really the evaluation, HIPAA-Observe allows you to review the bonds created between the categories of capital with categories of loss. If you must change the recommendations of defect for the bonds between the categories of capital and the categories of loss, it is simple to make the modification. You uncheck simply the capital which is not inclined the type of loss indicated. For example, the provisioning and the consumable ones are probable noninclined revelation data and should not thus be dependent. The diagram 4 shows how capital is related to the losses.
In phase III, you decide which calculations you want to calculate based on the reports/ratios of the threats, the capital, of the vulnerabilities, and on serious on the potential incidents.
Phase IV product of a final report which has a series of options which can be included. The options include
* a general summary
* recommendations for vulnerabilities of resolution
* a full report/ratio of capital
* a summary by report/ratio of capital
* a full report/ratio of threat
* a summary by report/ratio of threat
* a full report/ratio of vulnerability
* a report/ratio of distribution of vulnerability
* a full report/ratio of safeguard
* a report/ratio of the costs and outputs
* a report/ratio of threat of safeguard
* a report/ratio of question of recording of audit
* a report/ratio of guarantor of recording of audit
The reports/ratios produce Camembert cheeses of color and histograms and can be saved in Rich Text Format (rtf) or the format of Microsoft Word. While the reports/ratios are talkative in their recommendations, the majority of the organizations will want with
Suitable technologies would like to see that the esthetics of the user interface improved in HIPAA-Observe for Security. The technology of the tool if is sophisticated, this product deserves a user interface with the esthetics of edge and a glance of head of avant-garde. While the graphic design and the engine existing of report are proportioned, it could be transformed into a feeling of the market if the realizers enlisted the assistance of an artist signal-notch of design. Suitable technologies believes that the software is art, and when a product excels, we expect that the glance and to feel it him also excels. The glance and the feeling of HIPAA-Observe for Security. is basic and for this reason, by means of it cannot obtain as much oos and ahs while it could differently receive given its possibilities.
Suitable technologies would prefer to see the questions of outline expressed in the form of true interrogative sentence instead of a relationship with a question mark at the end. For example, instead of access to the data of newspaper system is limited to the approved personnel? , we would prefer the question to be, expressed is access to the data of newspaper system limited to the approved personnel? However, him 's right to say that the questions of outline which exist are certainly on the matter and convenient with one audit of HIPAA.
Since the values of LAFE vary according to the geographical place, suitable technologies would like to see this automated device so that when you put in your organization 'postal code of S, the values of LAFE are automatically adjusted. For example, if your organization is in Omaha, Nbraska (US), you would have a probability more raised much tornadoes which if your organization is in Portland, Maine (US). Today the watch of HIPAA for Security. allows you to adjust these values manually, however, this supposes that you know that what to be the adjustment would owe and it can take a certain time to you to look it to the top and to discover.
No comments:
Post a Comment