Weekend Special 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: sale65best

Your Path to Success: How to Pass the ISC HCISPP HealthCare Information Security and Privacy Practitioner Exam

Questions 41

A health care provider is considering Internet access for their employees and patients. Which of the following is the organization's MOST secure solution for protection of data?

Options:

A.

Public Key Infrastructure (PKI) and digital signatures

B.

Trusted server certificates and passphrases

C.

User ID and password

D.

Asymmetric encryption and User ID

Buy Now
Questions 42

Are there penalties under HIPPA?

Options:

A.

No penalties

B.

HIPPA calls for severe civil and criminal penalties for noncompliance, including: -- fines up to $25k for multiple violations of the same standard in a calendar year -- fines up to $250k and/or imprisonment up to 10 years for knowing misuse of individually identifiable health information.

C.

HIPPA calls for severe civil and criminal penalties for noncompliance, includes: -- fines up to 50k for multiple violations of the same standard in a calendar year -- fines up to $500k and/or imprisonment up to 10 years for knowing misuse of individually identifiable health information

D.

HIPPA calls for severe civil and criminal penalties for noncompliance, including: -- fines up to $100 for multiple violations of the same standard in a calendar year -- fines up to $750k and/or imprisonment up to 20 years for knowing misuse of individually identifiable health information

Buy Now
Questions 43

If a client requests a restriction for disclosure of a certain part of their PHI to a health plan, the health care provider is:

Options:

A.

Required to agree to the requested restriction if the disclosure is for treatment or payment, is not required by law, and if the information is specifically related to a health care item or service that the client has paid for in

full

B.

Required to agree only if the client specifies why he/she wants the restriction

C.

Required to agree only if the client specifies who he/she wants the restriction to apply to

D.

Required to agree to the requested restriction

Buy Now
Questions 44

Which of the following BEST describes the purpose of performing security certification?

Options:

A.

To identify system threats, vulnerabilities, and acceptable level of risk

B.

To formalize the confirmation of compliance to security policies and standards

C.

To formalize the confirmation of completed risk mitigation and risk analysis

D.

To verify that system architecture and interconnections with other systems are effectively implemented

Buy Now
Questions 45

An international medical organization with headquarters in the United States (US) and branches in France

wants to test a drug in both countries. What is the organization allowed to do with the test subject’s data?

Options:

A.

Aggregate it into one database in the US

B.

Process it in the US, but store the information in France

C.

Share it with a third party

D.

Anonymize it and process it in the US

Buy Now
Questions 46

They create and vote on bylaws

Options:

A.

Medical Staff

B.

Administration

C.

Governing Board

Buy Now
Questions 47

Privacy and security includes which of the following best practices?

Options:

A.

Talking about consumers in public areas or where you can be overheard

B.

Sharing your computer password with a new staff that does not have their own

C.

Including PHI in an unecypted email via a public system

D.

Keeping computer screens out of sight of others

E.

None of the above

Buy Now
Questions 48

Why did physicians remain independent of corporate settings even after the medical profession became well recognized?

Options:

A.

Hospitals were unable to pay high enough salaries to physicians.

B.

Physicians disliked salary arrangements.

C.

Licensure laws had not yet been passed.

D.

Physicians who took up practice in a corporate setting were castigated by the medical profession.

Buy Now
Questions 49

Which of the following best describes the incentives associated with capitation?

Options:

A.

Physicians have a higher incentive to sign up only healthy patients.

B.

Physicians have more flexibility to deliver effective and efficient services to patients.

C.

It only pays for an in-person visit with a physician.

D.

A and B only

Buy Now
Questions 50

Covered entities (certain health care providers, health plans, and health care clearinghouses) are not required to comply with the HIPPA Privacy Rule until the compliance date. Covered entities may, of course, decide to:

Options:

A.

unvoluntarily protect patient health information before this date

B.

voluntarily protect patient health information before this date

C.

after taking permission, voluntarily protect patient health information before this date

D.

compulsorily protect patient health information before this date

Buy Now