Eric C. Thompson - Böcker

Use this book to learn how to conduct a timely and thorough Risk Analysis and Assessment documenting all risks to the confidentiality, integrity, and availability of electronic Protected Health Information (ePHI), which is a key component of the HIPAA Security Rule. The requirement is a focus area for the Department of Health and Human Services (HHS) Office for Civil Rights (OCR) during breach investigations and compliance audits. This book lays out a plan for healthcare organizations of all types to successfully comply with these requirements and use the output to build upon the cybersecurity program.  With the proliferation of cybersecurity breaches, the number of healthcare providers, payers, and business associates investigated by the OCR has risen significantly. It is not unusual for additional penalties to be levied when victims of breaches cannot demonstrate that an enterprise-wide risk assessment exists, comprehensive enough to document all of the risks to ePHI.Why is it that so many covered entities and business associates fail to comply with this fundamental safeguard? Building a HIPAA Compliant Cybersecurity Program cuts through the confusion and ambiguity of regulatory requirements and provides detailed guidance to help readers: Understand and document all known instances where patient data existKnow what regulators want and expect from the risk analysis processAssess and analyze the level of severity that each risk poses to ePHIFocus on the beneficial outcomes of the process: understanding real risks, and optimizing deployment of resources and alignment with business objectivesWhat You’ll Learn Use NIST 800-30 to execute a risk analysis and assessment, which meets the expectations of regulators such as the Office for Civil Rights (OCR)Understand why this is not just a compliance exercise,but a way to take back control of protecting ePHILeverage the risk analysis process to improve your cybersecurity programKnow the value of integrating technical assessments to further define risk management activitiesEmploy an iterative process that continuously assesses the environment to identify improvement opportunitiesWho This Book Is ForCybersecurity, privacy, and compliance professionals working for organizations responsible for creating, maintaining, storing, and protecting patient information

Create, maintain, and manage a continual cybersecurity incident response program using the practical steps presented in this book. Don't allow your cybersecurity incident responses (IR) to fall short of the mark due to lack of planning, preparation, leadership, and management support. Surviving an incident, or a breach, requires the best response possible. This book provides practical guidance for the containment, eradication, and recovery from cybersecurity events and incidents.The book takes the approach that incident response should be a continual program. Leaders must understand the organizational environment, the strengths and weaknesses of the program and team, and how to strategically respond. Successful behaviors and actions required for each phase of incident response are explored in the book. Straight from NIST 800-61, these actions include:Planning and practicingDetectionContainmentEradicationPost-incident actionsWhat You’ll LearnKnow the sub-categories of the NIST Cybersecurity FrameworkUnderstand the components of incident responseGo beyond the incident response planTurn the plan into a program that needs vision, leadership, and culture to make it successfulBe effective in your role on the incident response teamWho This Book Is For Cybersecurity leaders, executives, consultants, and entry-level professionals responsible for executing the incident response plan when something goes wrong

Develop a comprehensive plan for building a HIPAA-compliant security operations center, designed to detect and respond to an increasing number of healthcare data breaches and events. Using risk analysis, assessment, and management data combined with knowledge of cybersecurity program maturity, this book gives you the tools you need to operationalize threat intelligence, vulnerability management, security monitoring, and incident response processes to effectively meet the challenges presented by healthcare’s current threats.  Healthcare entities are bombarded with data. Threat intelligence feeds, news updates, and messages come rapidly and in many forms such as email, podcasts, and more. New vulnerabilities are found every day in applications, operating systems, and databases while older vulnerabilities remain exploitable. Add in the number of dashboards, alerts, and data points each information security tool provides and security teams find themselves swimming in oceans of data and unsure where to focus their energy. There is an urgent need to have a cohesive plan in place to cut through the noise and face these threats.Cybersecurity operations do not require expensive tools or large capital investments. There are ways to capture the necessary data. Teams protecting data and supporting HIPAA compliance can do this. All that’s required is a plan—which author Eric Thompson provides in this book. What You Will LearnKnow what threat intelligence is and how you can make it usefulUnderstand how effective vulnerability management extends beyond the risk scores provided by vendorsDevelop continuous monitoring on a budgetEnsure that incident response is appropriateHelp healthcare organizations comply with HIPAAWho This Book Is ForCybersecurity, privacy, and compliance professionals working for organizations responsible for creating, maintaining, storing, and protecting patient information.

Asia, the location of the world’s fastest-growing economies, is also home to some of the fastest rates of urbanization humanity has ever seen, a process whose speed renders long-term outcomes highly unpredictable. This volume contrasts with much published work on the rural/urban divide, which has tended to focus on single case studies. It provides empirical perspectives from four Asian countries: India, Indonesia, Malaysia, and Thailand, and includes a wealth of insights that both critique and expand popular notions of the rural-urban divide. The volume is relevant not just to Asian contexts but to social scientific research on population dynamics more generally. Rather than deploying a single study to chart national trends, three chapters on each country make possible much more complex perspectives. As a result, this volume does more than extend our understanding of the interplay between cities and hinterlands within Asia. It enhances our notions of rural/urban cleavages, connections and conflicts more generally, with data and analysis ready for application to other contexts. Of interest to diverse scholars across the social sciences and Asian studies, this work includes accounts ranging from rural youth real estate entrepreneurs in Hyderabad, India, to social development in Aceh province in Indonesia, devastated by the 2004 tsunami, to the relationship between urban space and commonly held notions of the supernatural in Thailand’s northern city of Chiang Mai.

Asia, the location of the world’s fastest-growing economies, is also home to some of the fastest rates of urbanization humanity has ever seen, a process whose speed renders long-term outcomes highly unpredictable. This volume contrasts with much published work on the rural/urban divide, which has tended to focus on single case studies. It provides empirical perspectives from four Asian countries: India, Indonesia, Malaysia, and Thailand, and includes a wealth of insights that both critique and expand popular notions of the rural-urban divide. The volume is relevant not just to Asian contexts but to social scientific research on population dynamics more generally. Rather than deploying a single study to chart national trends, three chapters on each country make possible much more complex perspectives. As a result, this volume does more than extend our understanding of the interplay between cities and hinterlands within Asia. It enhances our notions of rural/urban cleavages, connections and conflicts more generally, with data and analysis ready for application to other contexts. Of interest to diverse scholars across the social sciences and Asian studies, this work includes accounts ranging from rural youth real estate entrepreneurs in Hyderabad, India, to social development in Aceh province in Indonesia, devastated by the 2004 tsunami, to the relationship between urban space and commonly held notions of the supernatural in Thailand’s northern city of Chiang Mai.

This report shares results of a region wide survey undertaken in late 2007 among over 2,000 students from leading universities across ASEAN member countries. The survey addressed questions on whether youths today consider themselves to be citizens of ASEAN; whether the region's youth are enthusiastic or skeptical about ASEAN; how well the region's youth know ASEAN and its members; and their concerns for the Association and the region. Survey findings indicate a nascent sense of ownership and stake in ASEAN, despite some clear differences in knowledge and opinions on the grouping. It is interesting to note that the students agreed on the importance of economic cooperation and addressing poverty and development needs; and share a desire to know more about the region.