Implementation Phases
PHASE 1 – Analysis and Recommendation
- Site Survey
- Physical – Examine physical security and potential vulnerabilities (wireless LAN)
- Technological – Hardware and software in place (network config, server updates, etc)
- Administrative – Examine policies and ensure someone is responsible for systems.
- Recommendations
- Draft recommendations and how they fit into overall risk management policy
- Define security domains as defined by HIPPA and solutions proposed
- ONCHIT Compliance
- Define meaningful and practical application to customer
- What needs to be done to achieve meaningful use?
- What forms need to be filed to receive reimbursement?
- How will reimbursement be issued?
- When and for how long will this continue?
PHASE 2 – Proposal and Implementation
- Proposal
- Physical – Secure networks, secure wireless LAN, switch port access modes
- Technological – Update software, implement data recovery solutions
- Administrative – Create policy and procedures, delegate responsibility
- Implementation planning – total cost, hours to complete, user disruptions, scheduling
- Implementation
- Install/Draft – Install or configure components, draft policy
- Test – Check that all policies and systems are working as intended
- Train – Instruct users on how to use new systems and understand responsibilities
- Support