MISY 5330, part 2 – Flashcards

Unlock all answers in this set

Unlock answers
question
7. Security management functions assigned security responsibility and information access management are all standards included in which safeguard category of the HIPAA Security Rule?
answer
Administrative
question
8. A type of software that protects computing resources and is most commonly found between the health care organization's internal network and the Internet is known as a(n):
answer
Firewall
question
9. A common type of computer virus that resides in a removable media device such as a flash drive is known as a:
answer
Boot sector virus
question
10. According to the National Institute for Standards and Technology (NIST) what type of contingency-related plan is typically IT focused and used in the event of a major hardware or software failure?
answer
Disaster recovery plan
question
External breaches of security are far more common than internal breaches.
answer
False
question
The most common encryption algorithm in use today is RSA; however, the AMA recommends AES as a better choice for encrypting electronic protected health information (ePHI).
answer
True
question
The HIPAA Security Rule governs all protected health information (PHI).
answer
False
question
Password and PIN systems are the most common forms of entity authentication and provide the strongest form of security
answer
False
question
Computer viruses are among the most common and virulent forms of intentional computer tampering.
answer
True
question
The proxy server is a more complex firewall device than the packet filter and runs on a computer.
answer
True
question
Ciphertext is a computer program that converts plaintext into an enciphered form.
answer
False
question
The primary challenge of developing an effective security program in a health care organization is balancing the need for security with the cost of security
answer
True
question
All of the specifications contained within the HIPAA Security Rule are considered required.
answer
False
question
Time limit, availability, and updates are all implementation specifications contained within the Policies, Procedures, and Documentation section of the HIPAA Security Rule.
answer
True
question
The policies and procedures that govern the receipt and removal of hardware, software, and devices such as disks and tapes are known as:
answer
Media Controls
question
The most stringent type of access control is:
answer
Context Based
question
One of the key components of applying administrative safeguards to protect an organization's health care information is:
answer
Risk Analysis
question
Password system, PINS, and biometric identification systems are all specific examples of:
answer
Entity Authentication
question
HITECH gave the responsibility for enforcing the HIPAA Privacy and Security Rules to:
answer
OCR
question
Under the HIPAA Security Rule, which is NOT considered a covered entity (CE)?
answer
A business associate
question
Data center management, network engineers, and help desk personnel are all examples of roles that would fall under:
answer
Operations and Technical Support
question
What is an example of an infrastructure service metric that can be used to formally measure services levels?
answer
The percentage of time that systems have unscheduled downtime
question
An advantage to managing IT in a health care organization with a decentralized structure is:
answer
Innovative use of information systems
question
Managing contracts with vendors, and developing and monitoring the IT budget are all tasks that are likely be performed by:
answer
IT Administration
question
According to Agarwal and Sambamurthy, what core IT process involves identifying new ways for IT to improve business operations and ensure that IT investments deliver value?
answer
Value Innovation
question
An IT professional that would be responsible for identifying information system needs and problems, evaluating workflow, and determining strategies for optimizing the use and effectiveness of particular systems is a:
answer
System Analysis
question
IT staff and services that are organized to support a particular application such as a billing system or clinical area are structured according to?
answer
Product Lines
question
All are characteristics of a high-performing IT staff except:
answer
They have a clinical background
question
Asking questions such as 'To what degree are IT strategies well aligned with the organization's overall strategic goals?' are related to what key area of evaluating IT effectiveness?
answer
Governance
question
A member of the IT team that is concerned with leading clinical information system initiatives is likely the:
answer
CMI0
question
On average, hospitals spend 5 percent of their operating budget and 25 percent of their capital budget on IT.
answer
False
question
Organizing IT staff according to critical organizational processes is a common approach because most organizations are structured this way.
answer
False
question
The role of CMIO is usually held by a physician and may be filled through a part time commitment.
answer
True
question
Applications programmers write programs to maintain and control infrastructure software, such as operating systems, networked systems, and database systems.
answer
False
question
In recent years, health care organizations have shown a growing interest in outsourcing part or all of their IT services.
answer
True
question
It general, over half of all health care provider CIOs report directly to the CEO of their health care organization.
answer
False
question
Network administrators and telecommunications specialist often work closely together to manage a healthcare organization's communication network.
answer
True
question
Tracking emerging technologies, and identifying the ones that might provide value to the organization are tasks commonly carried out by the CTO.
answer
True
question
The organization or form of the IT department in an integrated delivery system (IDS) is sometimes matrixed.
answer
False
question
Despite the advantages of a more centralized approach to managing IT services, many health care organizations have moved in recent years to a relatively decentralized structure.
answer
True
question
The development of an organization's strategy has two major components known as:
answer
Formulation and Implementation
question
What term refers to broad properties of the organization's infrastructure such as reliability and agility?
answer
Characteristics
question
What vector of IT strategy development can be highly speculative and may not require any immediate action?
answer
Assessment of strategic trajectories
question
Strategy discussions surrounding the application asset as a whole focus on all of these key areas EXCEPT:
answer
Application Implementation
question
What is an objective of the IT strategic planning process?
answer
All of the Above
question
The IT asset is composed of what four components?
answer
Applications, infrastructure, data, and IT staff
question
The determination of the basic long-term goals and objectives of an organization, the adoption of the course of action, and the allocation of resources necessary to carry out those actions is known as:
answer
Strategy
question
All of the reasons are attributed to the persistent difficulty many health care organization's face in achieving IT alignment EXCEPT:
answer
The complexity of the IT alignment process
question
All of the following are considered members of the IT staff who are responsible for the day in and day out management of information technology systems EXCEPT:
answer
CIO
question
What process centers on discussions of ideas and issues that lead to the determination of goals and initiatives and the definition of organizational capabilities and competencies needed to implement these goals and initiatives?
answer
Strategic Thinking
question
Formulation involves understanding competing ideas and choosing between them
answer
True
question
Organizations that have a history of IT excellence have evolved to a state where their alignment process is methodology-less.
answer
True
question
The implementation component of strategy development includes the development of project plans and budgets.
answer
False
question
An effective IT alignment requires the integration of the organization's strategic context, environment, IT strategy, and IT portfolio
answer
True
question
IT alignment done correctly will guarantee the effective application of IT.
answer
False
question
Strategic decisions rarely involve changes in the core understandings that guide organizational activity.
answer
False
question
The process of developing IT strategy should be similar in approach and nature to the process used for overall strategic planning.
answer
True
question
The alignment process should produce a number of results including a high-level analysis of the budget needed to carry out any IT initiatives.
answer
True
question
A strategic decision has clear and illuminating ramifications for many other decisions.
answer
True
question
Scoring or ranking can be used as a method of prioritizing recommendations by the leadership team and should be accepted as definitive output.
answer
False
question
Phase II as part of the evolution of IT strategy has three major classes of activity including all EXCEPT:
answer
Quality Assessment
question
Foundation replacement should only occur under what circumstances?
answer
All of the Above
question
What source of advantage is realized when IT is used to monitor an organization's plans, operations, and environment?
answer
Rapid and accurate provision of critical data
question
The way an organization views a particular IT challenge or opportunity is known as:
answer
Governing Concepts
question
The type of strategies that result from an understanding that a set of IT strategies points to the need to elevate some aspects of organizational IT-related competency are specifically known as:
answer
Broad Leverage Strategies
question
Using an EHR to implement systems such as personal health records (PHRs) and to remotely monitor chronically ill patients are examples of initiatives that would occur during what part of Phase II?
answer
Systems Extensions
question
The pursuit of IT as a source of competitive advantage can result in competitive baggage such as:
answer
All of the Above
question
According to Jim Collins seminal book Good to Great, all of the following are general observations of 'great' companies orientation to IT EXCEPT:
answer
Often mentioned IT as being critical to their success
question
A source of advantage that requires a solid understanding of the needs of patients, providers, and other customers is:
answer
Product and services differentiation
question
Factors that can limit the utility of IT technology as a tool include all of the following EXCEPT:
answer
Experimenting with new technologies
question
Complementary strategies are organizational initiatives that do not involve the IT asset per se but are needed for the IT strategy to succeed
answer
True
question
The competitive advantage obtained from an IT application or technology rarely comes from the actual IT system but rather from skilled process changes that distinguish an organization from its competitors.
answer
True
question
Initiative specific strategies are developed through discussions about how to make the organization more effective in its IT efforts
answer
False
question
Assessing the return on investment (ROI) of a foundation is an easier exercise than determining the ROI or net present value (NPV) of an application.
answer
False
question
In many ways, the architecture, technologies, and tools that enable ongoing implementation may be more important than the current functionality of the application.
answer
True
question
Improved organizational competitive position through process gains is usually an automatic result of IT implementation.
answer
False
question
Planning for Phase II must start while the organization is in Phase I but should not begin until Phase I is completed.
answer
False
question
Organizations that have been effective in the strategic application of IT over a long period of time generally have a series of 'singles' or small successes punctuated by an occasional leap, or grand slam.
answer
True
question
Information technology itself can provide a competitive advantage that is sustainable for a long time
answer
False
question
An organization should realistically be able to define all of their functionality requirements during the RFP process.
answer
False
question
Ensuring that the IT issues and needs of a function of the organization are understood and communicated to the IT department and the executive committee is a responsibility of the:
answer
IT Liaison
question
According to Peter Weill and Jeanne Ross, which of the five major areas that form the foundation of IT governance deals with an integrated set of technical choices used to guide the organization in satisfying business needs?
answer
IT Architecture
question
One of the most critical management undertakings that involves the commitment of resources to carry out strategic initiatives is:
answer
Developing Budgets
question
Ensuring that the organization has a comprehensive, thoughtful, and flexible IT strategy is a responsibility of:
answer
Senior Management
question
Well-developed governance mechanisms have all of these characteristics EXCEPT:
answer
They rarely change
question
What is the second step of IT budget development?
answer
IT leadership reviews the strategic initiatives with senior leadership
question
Participating in developing and maintaining the IT agenda and priorities and understanding the scope and quality of IT initiatives within a specific department are responsibilities of:
answer
IT Users
question
According to Carol Brown and Vallabh Sambamurthy, which of the five mechanisms used by IT groups to improve their coordination and working relationships involves actions such as training IT staff on team building or offering user feedback during their reviews?
answer
Human Resource Practices
question
All are considered characteristics of an organization that aspire to high levels of IT effectiveness EXCEPT:
answer
True Innovation Occurs Rapidly
question
Despite the size of a health care organization effective management at a minimum requires:
answer
All of the Above
question
The fundamental accountability for the performance of the health care organization, including the IT function is held by the organization's senior leadership.
answer
False
question
Developing an IT steering committee to address all IT issues and decision is generally a good idea.
answer
False
question
Too much user responsibility can lead to insufficient attention to infrastructure, resulting in application instability.
answer
True
question
Governance structures and the distribution of responsibilities should be some what influenced by basic strategic objectives.
answer
False
question
Some of the responsibilities of the IT group may be delegated to others for example a non-IT department may be permitted to have their own IT staff and manage their own systems.
answer
True
question
As a general ground rule, the IT budget should be discussed in the same conversations that discuss or involve non-IT budget requests.
answer
True
question
Capital budgets are the funds associated with using and maintaining the asset.
answer
False
question
Effective application of IT involves the thoughtful distribution of IT responsibilities between the IT department, users of applications and IT services, and senior management.
answer
False
question
An IT committee of the board can be composed of committee members other than board members such as IT professionals.
answer
True
question
The IT staff or CIO should be asked to defend infrastructure investments but should not be asked to defend applications.
answer
True
question
Changes that leave the organization and its core mission intact but significantly alter the way the organization carries out its business are:
answer
Radical Changes
question
What individual generally holds overall accountability for a project?
answer
Business Sponsorship
question
What tool or document provides an overview of the project and is used by the project team during the day-to-day management of the project ?
answer
Project Plan
question
It is estimated that around what percentage of IT projects are successful?
answer
35 Percent
question
All are considered necessary aspects of change management EXCEPT:
answer
Universal Buy-In
question
What committee generally focuses on a subset of IT projects and determines if the project is proceeding well or likely to be heading into trouble?
answer
Project Review Committee
question
The project status report that documents and communicates the current condition of the project is generally prepared and distributed:
answer
Monthly
question
The two major categories of risk that confront significant IT investments are:
answer
Strategy and Implementation Failure
question
Maintaining the project plan and communicating progress to sponsors, stakeholders, and team members are responsibilities of the:
answer
Project Manager
question
What aspect of change management deals with helping the staff understand the nature of the change and how their roles and work life will be different?
answer
Language and Vision
question
Fundamental change is common in health care and carries less risk than other forms of change.
answer
False
question
Project management places an emphasis on many of the "softer" aspects of management and leadership such as communicating vision and establishing trust.
answer
False
question
Project phases and tasks including the sequence of these phases and tasks are generally included in the project plan.
answer
True
question
If a change affects the entire organization, then it is advisable for the CEO to chair the leadership committee.
answer
True
question
Management strategies should be the same regardless of the type of project being undertaken.
answer
False
question
Change initiatives and IT projects need to communicate their progress regularly but only when that progress is largely seen or apparent to the organization.
answer
False
question
One outcome of continuous change may be the recognition that current application systems are progressively becoming a poor fit with the evolving organization.
answer
True
question
The project team generally manages the performance of the project work and allocates resources as necessary to do the work.
answer
True
question
Excellent project management always ensures project success.
answer
False
question
For very complex projects, it is not unusual to see 20 to 25 percent of the budget and the duration of some tasks labeled as "unknown" or "unclear."
answer
True
question
Of the four types or classes of IT investment, which involves upgrading core IT infrastructure and applications or is intended to reduce the cost or improve the quality of IT services?
answer
Renewal
question
A common financial measure that is calculated by subtracting the initial investment from the future cash flows that result from the investment is known as:
answer
Net Present Value
question
During what step related to increasing accountability for IT investments, should the project sponsors and business owners be defined and develop an understanding of the accountability they now have for the successful completion of the project?
answer
Second
question
Fewer errors, faster turnaround times for tests results, and a quicker admission process are all examples of tangible values that can be measured in terms of:
answer
Process Improvements
question
A common proposal problem that occurs when it is projected that people will use the system in a specific way is:
answer
Reliance on Complex Behavior
question
What is described as a cornerstone in examining the value of an IT project?
answer
IT Project Proposal
question
What is intended to significantly change the competitive position of the organization or redefine the core nature of the enterprise?
answer
Strategic Initiatives
question
According to Ross and Johnson, prerequisites for effective IT prioritization include:
answer
All of the Above
question
All of the following are examples of intangible values EXCEPT:
answer
Increase in Brand Awareness
question
Steps to improve value realization include all of the following EXCEPT:
answer
Lengthen deliverable cycles
question
Many studies have found that there is no overall obvious direct relationship between IT expenditures and organizational performance.
answer
True
question
Information system infrastructure is hard to evaluate, as evaluation is often instinctive and experientially based.
answer
True
question
Organizations commonly revisit their IT investments to determine if the promised value was actually achieved.
answer
False
question
IT's economic impact comes from incremental innovations rather than from 'big bang' initiatives.
answer
True
question
Information system investments directed at improving the quality of service or medical care are generally evaluated in terms of service parameters.
answer
True
question
An organization can determine the ROI of an investment in a tool only if it knows the task to be performed and the skill level of the participants who are to perform the task.
answer
True
question
In health care it is common that information systems are the centerpiece of a redefinition of the organization.
answer
False
question
Statements about specific numerical goals are commonly included in IT project proposals
answer
False
question
IT investments that have different objectives and value propositions have different value assessment techniques.
answer
True
question
When different organizations implement the same system and have comparable implementation skill levels, the value achieved is usually the same.
answer
False
Get an explanation on any task
Get unstuck with the help of our AI assistant in seconds
New