GGUSF US Veterans Affairs and Loss of Privacy Information Answers Case Study on U.S. Veterans Affairs and Loss of Privacy Information
What is the difference between privacy law and information systems security? How are they
related?
Was the employee justified in taking home official data? Why or why not?
What are the possible consequences associated with the data loss?
Regarding the loss of privacy data, was there any data containing protected health information
(PHI) making this a Health Insurance Portability and Accountability Act (HIPAA) compliance
violation?
What action can the agency take against the employee concerned?Would the response of the agency have been different had the data theft occurred at work instead
of happening at the employees residence? Why or why not?Why were the VA data analysts two supervisors reprimanded and demoted by the VA secretary?
Do you think this was justified? Why or why not?What was violated in this data breach?If the database had been encrypted because of VA policy, would this data loss issue even have
been an issue? Why or why not?What risk mitigation or security control recommendations would you suggest to prevent this from
occurring again?What information systems security and privacy security policies do you think would help mitigate
this breach and loss of privacy data?What or who was the weakest link in this chain of security and protection of privacy data?If the VA had performed a security and information assurance audit for compliance, what could
the VA do on an annual basis to help mitigate this type of loose policy conformance?True or false: U.S. taxpayers ended up paying for this VA security breach, notifications, and post-
mortem damage control. 15. Which organization in the U.S. federal government is responsible for performing audits on other
U.S. federal government agencies? (Hint: It is also known as the Congressional Watchdog.) 15
Lab #2 – Assessment Worksheet
Case Study on U.S. Veterans Affairs and Loss of Privacy Information
Course Name and Number: _____________________________________________________
Student Name: ________________________________________________________________
Instructor Name: ______________________________________________________________
Lab Due Date: ________________________________________________________________
Overview
In this lab, you reviewed a real-world case study that involved the loss of privacy information,
and you analyzed what violations occurred, the implications of those violations, and the possible
mitigation remedies that could prevent future violations.
Lab Assessment Questions & Answers
1. What is the difference between privacy law and information systems security? How are they
related?
2. Was the employee justified in taking home official data? Why or why not?
3. What are the possible consequences associated with the data loss?
4. Regarding the loss of privacy data, was there any data containing protected health information
(PHI) making this a Health Insurance Portability and Accountability Act (HIPAA) compliance
violation?
5. What action can the agency take against the employee concerned?
Copyright © 2014 by Jones & Bartlett Learning, LLC, an Ascend Learning Company. All rights reserved.
www.jblearning.com
Student Lab Manual
16 | LAB #2 Case Study on U.S. Veterans Affairs and Loss of Privacy Information
6. Would the response of the agency have been different had the data theft occurred at work instead
of happening at the employees residence? Why or why not?
7. Why were the VA data analysts two supervisors reprimanded and demoted by the VA secretary?
Do you think this was justified? Why or why not?
8. What was violated in this data breach?
9. If the database had been encrypted because of VA policy, would this data loss issue even have
been an issue? Why or why not?
10. What risk mitigation or security control recommendations would you suggest to prevent this from
occurring again?
11. What information systems security and privacy security policies do you think would help mitigate
this breach and loss of privacy data?
12. What or who was the weakest link in this chain of security and protection of privacy data?
13. If the VA had performed a security and information assurance audit for compliance, what could
the VA do on an annual basis to help mitigate this type of loose policy conformance?
14. True or false: U.S. taxpayers ended up paying for this VA security breach, notifications, and postmortem damage control.
17
15. Which organization in the U.S. federal government is responsible for performing audits on other
U.S. federal government agencies? (Hint: It is also known as the Congressional Watchdog.)
Copyright © 2014 by Jones & Bartlett Learning, LLC, an Ascend Learning Company. All rights reserved.
www.jblearning.com
Student Lab Manual
Purchase answer to see full
attachment
Why Choose Us
Top quality papers
We always make sure that writers follow all your instructions precisely. You can choose your academic level: high school, college/university or professional, and we will assign a writer who has a respective degree.
Professional academic writers
We have hired a team of professional writers experienced in academic and business writing. Most of them are native speakers and PhD holders able to take care of any assignment you need help with.
Free revisions
If you feel that we missed something, send the order for a free revision. You will have 10 days to send the order for revision after you receive the final paper. You can either do it on your own after signing in to your personal account or by contacting our support.
On-time delivery
All papers are always delivered on time. In case we need more time to master your paper, we may contact you regarding the deadline extension. In case you cannot provide us with more time, a 100% refund is guaranteed.
Original & confidential
We use several checkers to make sure that all papers you receive are plagiarism-free. Our editors carefully go through all in-text citations. We also promise full confidentiality in all our services.
24/7 Customer Support
Our support agents are available 24 hours a day 7 days a week and committed to providing you with the best customer experience. Get in touch whenever you need any assistance.
Try it now!
How it works?
Follow these simple steps to get your paper done
Place your order
Fill in the order form and provide all details of your assignment.
Proceed with the payment
Choose the payment system that suits you most.
Receive the final file
Once your paper is ready, we will email it to you.
Our Services
No need to work on your paper at night. Sleep tight, we will cover your back. We offer all kinds of writing services.
Essays
You are welcome to choose your academic level and the type of your paper. Our academic experts will gladly help you with essays, case studies, research papers and other assignments.
Admissions
Admission help & business writing
You can be positive that we will be here 24/7 to help you get accepted to the Master’s program at the TOP-universities or help you get a well-paid position.
Reviews
Editing your paper
Our academic writers and editors will help you submit a well-structured and organized paper just on time. We will ensure that your final paper is of the highest quality and absolutely free of mistakes.
Reviews
Revising your paper
Our academic writers and editors will help you with unlimited number of revisions in case you need any customization of your academic papers