The information was copied from other files and so its loss will not affect follow-up care for any patients. The flash drive was used to transport information used to study and continuously improve surgical results. Earlier this week, URMC notified 537 patients that a resident physician misplaced a USB computer flash drive that carried protected health information. May 3, 2013: The University of Rochester Medical Center has sent letters to a group of former orthopaedic patients, alerting them to the loss of protected health information.
PETITION TO IFIRE RUTGERS PRESIDENT BARCHI LICENSE
May 7, 2013: The names, Social Security numbers and driver's license numbers of more than 12,000 online student applicants at York Technical College might have been exposed, school officials said Tuesday. The Research and Education Networking Information Sharing and Analysis Center (REN-ISAC) advised academic institutions this week to review their DNS (Domain Name System) and network configurations in order to prevent their systems from being abused to amplify DDoS attacks. May 13, 2013: Colleges and universities are being encouraged to scrutinize their systems to keep them from being hijacked in DDoS (distributed denial-of-service) attacks. May 24, 2013: Idaho State University is paying a $400,000 to the federal government to settle allegations it improperly exposed confidential medical records. Someone who saw the database didn't find it humorous and sent screenshots out to a number of people, one of them the parent of a rejected applicant, who sent copies to Inside Higher Ed, and posted a copy on College Confidential (a website popular with applicants). Mills, associate provost for enrollment at Northwestern University, created a fake classification system in an internal admissions database to put complaining parents and counselors in different categories. Ultimately, well-educated, pro-active employees are any institution's best internal control. Controls are really about each individual doing the right things, paying attention, evaluating risks, and making compliant decisions.Īs you evaluate the most recent news articles in higher education, think about where internal controls might need some improvement in your area of influence. Since 1992, the most common framework for discussing internal control has been what auditors and accountants call the ''COSO Model.'' According to their web site, ''The Committee of Sponsoring Organizations' (COSO) mission is to provide thought leadership through the development of comprehensive frameworks and guidance on enterprise risk management, internal control and fraud deterrence designed to improve organizational performance and governance and to reduce the extent of fraud in organizations.'' Earlier thcis month COSO released a revision to their internal control framework and if you are interested you can read about that at this link: While the COSO model is a useful tool, it is important not to lose sight of the fact that controls are really risk management tools we use to help ensure we achieve our objectives. You can see elements of internal control being practiced in many ancient societies (e.g., tally sticks) and even see its use in some biblical texts (e.g., Book of Ezra). I would make the argument that internal controls have been around for just about as long as society. Internal controls are a common topic each month in Case-in-Point. ''Action is the foundational key to all success.''
0 kommentar(er)
