A Short Note On Short Paper Application Of Laws - 1236 Words

M6A1 - Short Paper Application of Laws K-LiWin Consulting has been contacted by four distinct companies to advise them on their information management needs as related to security. Each company has differing needs based on the regulation and laws pertaining to their specific industry. Each student should provide a thorough review of one of the laws listed above. They should prepare a report and make a presentation as to the provisions, if any, that apply to the associated company. In the case of laws that may have an impact on multiple companies, the student should determine which provisions apply to which company. Each report should at a minimum give an overview of the law, define the provisions impacting the respective company or†¦show more content†¦The newly hired Chief Information Security Officer (CISO) has a background in finance, but not in information management and has poor comprehension of information security (Whitman Mattord, 2010). He realized his lack of proficiency and engaged K-LiWin Consultin g to ensure compliance with all pertinent laws and regulations (Whitman Mattord, 2010). The Health Insurance Portability and Accountability Act (HIPAA), is a set of standards for guarding sensitive patient data. Any establishment that has transactions using protected health information (PHI) will safeguard that all the required physical, network, and process security procedures are in place and fully followed (Whitman Mattord, 2010). This would include anyone who provides treatment, payment and operations in healthcare. This would also include business associates and anyone with access to patient information and provides support in treatment, payment or operations (Whitman Mattord, 2010). Any subcontractors, or business associates of business associates, are also held to this compliance (Whitman Mattord, 2010). The HIPAA law and its parts have requirements for the transmittal, storage, and privacy of health care information. Within the area of information security, there are e ighteen information security standards and come under three separate areas (What is HIPAA