US United States Department of Veterans Affairs Jul 2012 Misuse (Q10874)

From Open Risk Manual
A data breach risk event
Language Label Description Also known as
English
US United States Department of Veterans Affairs Jul 2012 Misuse
A data breach risk event

    Statements

    is instance of
    Misuse
    0 references
    has date
    July 2012
    0 references
    has textual description
    Employee A, who is a Veteran, was admitted into the our hospital. The Information Security Officer (ISO) was asked to keep an eye on Employee As medical record. The ISO found that three other employees accessed the record without authorization or need to know. Employees B and C admitted gaining access without a need to know, Employee D denied gaining access. (English)
    1 reference
    is documented in URL
    http://vcdb.org/pdf/va-security.pdf
     
      Retrieved from "https://www.openriskmanual.org/wiki/index.php?title=Item:Q10874&oldid=48132"
      Creative Commons Attribution-NonCommercial-ShareAlike
      Powered by MediaWiki