Add to collection(s) Add to saved
  1. No category

Security Incident Procedures, Response, and Reporting

advertisement 
Bay-Arenac Behavioral Health
POLICIES AND PROCEDURES MANUAL
Chapter:
Section:
Topic:
9
3
16
Page: 1 of 2
Information Management
Administrative Safeguards
Security Incident Procedures – Response & Reporting
Supersedes Date:
Approval Date:
___________________________________
Pol:
Pol: 4-21-05
Board Chairperson Signature
Proc:
Proc: 4-21-05
___________________________________
Chief Executive Officer Signature
Note: Unless this document has an original signature, this copy is uncontrolled and valid on this date only: 3/8/2016. For Controlled
copy, view shared directory G:\\Isimage01\BACMH_users\bacmh_group\Agency\Agency_Manual.
Policy:
It is the policy of Bay-Arenac Behavioral Health (BABH) to report and respond to incidents
relating to the potential, perceived, or actual security and data access issues
Purpose:
To document, investigate, report, resolve, and to secure the information systems environment,
and to verify the accuracy of the incident, and to report finding to the compliance officer for
remediation.
Applicability:
This will relate to all employees and operational support contractor as it relates to the day-to-day
operations of BABH.
Definitions:
N/A
Procedure:
To staff, support and maintain a technology review committee to monitor the password and
automated security configurations. This committee will review and discuss security settings of
the information system.
Attachments:
N/A
Related Forms:
N/A
Bay-Arenac Behavioral Health
POLICIES AND PROCEDURES MANUAL
Chapter:
Section:
Topic:
9
3
16
Page: 2 of 2
Information Management
Administrative Safeguards
Security Incident Procedures – Response & Reporting
Supersedes Date:
Approval Date:
___________________________________
Pol:
Pol: 4-21-05
Board Chairperson Signature
Proc:
Proc: 4-21-05
___________________________________
Chief Executive Officer Signature
Note: Unless this document has an original signature, this copy is uncontrolled and valid on this date only: 3/8/2016. For Controlled
copy, view shared directory G:\\Isimage01\BACMH_users\bacmh_group\Agency\Agency_Manual.
Related Materials:
NIST SP 800-61 (http://csrc.nist.gov/publications) This is related material only. It cannot be
inferred that all or any items detailed in NIST document are included in this policy. It is for
reference purposes only.
References/Legal Authority:
Administrative Safeguards - HIPAA Section 164.308(a)(6)
Related documents
Pain Management Policy and Procedure - Bay
Pain Management Policy and Procedure - Bay
Evaluation of Chairperson/Program Director
Evaluation of Chairperson/Program Director
Physical Education Grading Policy Acknowledgement Form
Physical Education Grading Policy Acknowledgement Form
Client Individualized Care Plan
Client Individualized Care Plan
Policy #10 - State Standards, Technology Utilization, and Program
Policy #10 - State Standards, Technology Utilization, and Program
Clinical Agency Specific Orientation
Clinical Agency Specific Orientation
Statement of No Income To Whom It May Concern: I, have not had
Statement of No Income To Whom It May Concern: I, have not had
Lehman College, Political Science
Lehman College, Political Science
Download
advertisement