Problem 1: General Hospital needs to implement information security management practices and, to this end, has allocated funds to hire an ISO to propose security oversight improvements to help the facility meet compliance expectations. What credentials, qualifications, and job responsibilities would you recommend for the ISO role job announcement?
Problem 2: Provide at least two (2) specific examples of mandatory security measures by current legislation or an oversight organization and what security practice strategies could be implemented for compliance.
Problem 3: Provide at least two (2) specific examples of patient rights that must be met and what security practice strategies could be implemented for compliance. What evidence-based audit tools and incident reporting strategies would you apply to ensure compliance with these security standards?