Internal Security Audits

The Veteran Affair’s Office of Information & Technology Risk Management Team is performing an overview of internal security audit to determine how the Department of Veterans Affairs follows the Health Insurance Portability and Accountability Act (HIPAA) of 1996. “The Health Insurance Portability and Accountability of Act demands that all HIPAA covered businesses prevent unauthorized access to “Protected Health Information” or PHI. PHI includes patients’ names, addresses, and all information pertaining to the patients’ health and payment records.” ("HIPAA.com - Compliance Made Easy," n.d.) Ensuring that the appropriate measure should be enacted to better protect confidential information of the people they serve. Ensuring that the right security …show more content…
One of the most popular and open source applications is known as the “Nmap” able to run on both UNIX and windows Operating Systems. But overall the Nmap application is “commonly used for security audits, many systems and network administrators find it useful for routine tasks such as network inventory, managing service upgrade schedules, and monitoring host or service uptime.” (Lyon, 2009) Keeping in mind that the three elements of people, process, and technology. Along with the combination to endure that vulnerability testing is conducted to a quality standard to ensure stable results when evaluating security controls. The Veterans Administration has found many risks in the past that have to do with the Health Insurance Portability and Accountability Act. In order endure that the proper step are taken to ensure that privacy and confidential measures are more prone to being secured are in order. The Veterans Administration still has a lot of work ahead due to not evolving with the threat issues it has experienced in the past and addressing these issues should be the main goal for the Veterans