Risk Management and Risk Assessment in a Healthcare Setting

This course is part of ISC2 Healthcare Certificate Specialization

Instructor: ISC2 Education & Training

Skills you'll gain

  •   Threat Modeling
  •   Patient Safety
  •   Information Assurance
  •   Risk Analysis
  •   Information Privacy
  •   Healthcare Industry Knowledge
  •   Health Care Procedure and Regulation
  •   Personally Identifiable Information
  •   Security Controls
  •   Risk Management Framework
  •   Medical Privacy
  •   NIST 800-53
  •   ISO/IEC 27001
  •   Risk Management
  •   Continuous Monitoring
  •   Data Security

    • There are 6 modules in this course

    Risk management is a crucial element for understanding information and privacy security. This domain sets the foundation for the entire course; terms defined here will be used in this book and in your day-to-day career. Risk management is one of the most complicated and important topics in information security, and this chapter does not pretend to cover all the different elements pertaining to it, but it provides a high-level glimpse of the essential concepts of this vital function. ​ In the healthcare industry, the importance of adopting a risk management approach is even more crucial, due to the sensitive nature of the information. Data sharing can, in many cases, be a matter of life and death in the healthcare industry. However, patient safety is not the only objective. Saving someone's life only to have their most sensitive secrets leaked to unauthorized parties is counterproductive. Hence, the security and privacy practitioner must balance the clinical need for information and the patient's rightful expectation of privacy. ​ Like other industries, the healthcare industry relies on technology to improve operations and patient care. In many cases, these technologies come with associated risks that must be considered. The industry also has unique regulatory and business requirements that the security and privacy practitioner must uphold. ​ This course will cover the following learning objectives: - Define the foundations of enterprise risk management. - Explain the information risk management and assessment process. - Identify control assessment procedures using organization risk frameworks. ​ - Explain the process of monitoring for and mitigating risk. - Define continuous monitoring.

    Module 1: Principles of Enterprise Risk Management

    Module 2: Information Risk Management Frameworks and Processes

    Module 3: Control Assessment Procedures

    Module 4: Risk Response, Continuous Monitoring, and Controls to Mitigate Risk

    Course Conclusion

    Explore more from Computer Security and Networks

    A General Approach to Risk Management

    Risk Identification, Monitoring, and Analysis

    Risk Management

    Information Technologies and Security in Healthcare Settings

    ©2025  ementorhub.com. All rights reserved