Maria has been a nurse at Dellberg Clinic for 20 years. She is training a new nurse and is advising them on how to access the clinic's electronic health record system. Maria tells the new nurse to make sure to create a password that she will always remember because once you create it, it will never change.What is wrong with this scenario?
The clinic should require all employees to change their passwords frequently.
The clinic should provide employees with privacy screens since their passwords never change.
The clinic should require all employees to run an anti-virus scan before accessing the records system.
The clinic should require automated sign-offs to occur after a short period of inactivity.
The Correct Answer is A
A. The clinic should require all employees to change their passwords frequently. –Regular password changes are essential to maintaining security and preventing unauthorized access, especially in healthcare where sensitive data is at risk.
B. The clinic should provide employees with privacy screens since their passwords never change. – Privacy screens are useful for data protection but do not address the issue of static passwords, which remain a security vulnerability.
C. The clinic should require all employees to run an anti-virus scan before accessing the records system. – Anti-virus scans help protect against malware, but they do not address password security.
D. The clinic should require automated sign-offs to occur after a short period of inactivity. – Automated sign-offs help with security but are unrelated to the problem of passwords that are not periodically changed.
Free Nursing Test Bank
- Free Pharmacology Quiz 1
- Free Medical-Surgical Quiz 2
- Free Fundamentals Quiz 3
- Free Maternal-Newborn Quiz 4
- Free Anatomy and Physiology Quiz 5
- Free Obstetrics and Pediatrics Quiz 6
- Free Fluid and Electrolytes Quiz 7
- Free Community Health Quiz 8
- Free Promoting Health across the Lifespan Quiz 9
- Free Multidimensional Care Quiz 10
View Related questions
Correct Answer is A
Explanation
A. Regularly run a penetration test. – Penetration tests identify system vulnerabilities that attackers could exploit, helping to strengthen system defenses against frequent attacks.
B. Require a two-factor authentication method when accessing protected health records. – Two-factor authentication is beneficial for security but doesn’t reduce the volume of attacks; it simply adds a layer of access protection.
C. Install software that can be used to wipe data from devices that go missing. – Wiping data from missing devices helps prevent data loss but doesn’t reduce attack frequency.
D. Implement timed computer screen locks. – Screen locks are helpful for local security but have no effect on external cyber attacks or the frequency of attempted attacks.
Correct Answer is B
Explanation
A. By utilizing its hospital Wi-Fi. – While hospital Wi-Fi is generally secure, relying solely on it does not guarantee protection from potential security risks.
B. By utilizing public Wi-Fi that is encrypted and enabling a VPN. – This option provides an extra layer of security by encrypting the data and protecting the patient’s information from unauthorized access while using public networks.
C. By utilizing public Wi-Fi and using a browser capable of blocking cookies. – Blocking cookies does not significantly enhance security for accessing sensitive health information and can hinder the functionality of some websites.
D. By utilizing public Wi-Fi that is encrypted. – While this provides some security, it is better to use a VPN alongside encrypted public Wi-Fi for enhanced protection against potential threats.