ABSTRACT
The objectives of this chapter are as follows:
Understand what is required to physically secure a facility.
Determine what needs to be addressed under contingency operations.
Determine what needs to be addressed in a facility security plan.
Understand what types of procedures need to be implemented for access control and validation.
Determine what needs to be addressed in maintaining records.
Understand the requirements for controlling the use of workstations.
Determine what security measures are required for workstations.
Understand the controls in place for devices and media containing electronic protected health information.
Determine what type of requirements there are for disposing of devices or media containing electronic protected health information.
Determine what is required to reuse media with electronic protected health information on it.
Understand how to address and account for devices or media containing electronic protected health information.
Determine what requirements need to be addressed to conduct data backups and storage.
310Determine how electronic protected health information will be protected while being accessed, stored, or transmitted on mobile devices.
Determine what types of controls are necessary when implementing a wireless local area network.
