MUSC Policy MUSC-xx: Information Security

MUSC Policy MUSC-xx: Information Security - Evaluation

Definitions:

Refer to MUSC Policy MUSC-xx: Information Security: Appendix A.

Policy:

MUSC's Entity IACOs are required to monitor and evaluate the effectiveness of all information security policies and procedures within their respective entities.

System Owners are required to monitor and evaluate the effectiveness of all System-specific policies and procedures.

Evaluation should occur at regular intervals, and also in response to environmental, operational, policy or regulatory changes.

Sanctions:

Refer to MUSC Policy MUSC-xx: Information Security.

References:

HIPAA Security 164.308(a)(8) Evaluation

GLBA Safeguards Rule: 314.4(e)

$Id: security-evaluation.html,v 1.6 2004/12/10 19:45:52 gadsden Exp $