Information Risk Management
ePHI/PHI/PII are all potential risk vectors for Aspire.
As we are tasked with maintaining the utmost levels of security we have established a team for managing and monitoring Information risk Management. Know your team:
a. Information Risk Manager: Chief Information Officer, CIO
b. Information Security Officer (ISO): Director of IS/IT
c. Privacy Officer: Medical Records Correspondence/Privacy Officer
d. Systems Analyst: Network Administrator
e. Compliance Officer: Director of Compliance
f. Security/Technology subject matter experts:
i. Database Administrator
ii. Director, Electronic Health Record
iii. IT Manager
In the event of a breach or exposure event contact each of these members and inform them of the situation. Collect as much information as possible to share with the leadership ranks.
Link to Policy - https://powerdms.com/link/Aspire/document/?id=1483527