US United States Department of Veterans Affairs Jul 2012 Misuse (Q10874)

From Open Risk Manual
Revision as of 23:04, 8 March 2020 by imported>Wiki admin (‎Created a new Item)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
A data breach risk event
Language Label Description Also known as
English
US United States Department of Veterans Affairs Jul 2012 Misuse
A data breach risk event

    Statements

    is instance of
    Misuse
    0 references
    has date
    July 2012
    0 references
    has textual description
    Employee A, who is a Veteran, was admitted into the our hospital. The Information Security Officer (ISO) was asked to keep an eye on Employee As medical record. The ISO found that three other employees accessed the record without authorization or need to know. Employees B and C admitted gaining access without a need to know, Employee D denied gaining access. (English)
    1 reference
    is documented in URL
    http://vcdb.org/pdf/va-security.pdf
     
      Retrieved from "https://www.openriskmanual.org/wiki/index.php?title=Item:Q10874&oldid=48132"
      Creative Commons Attribution-NonCommercial-ShareAlike
      Powered by MediaWiki