The Security Rule requires that the covered entity identifies a security official who is responsible for the development and implementation of the policies and procedures. This is addressed under which security standard?:

1. A. Security Incident Procedures
2. B. Response and Reporting
3. C. Assigned Security Responsibility
4. D. Termination Procedures
5. E. Facility Access Controls

Correct Answer: C

Which HIPAA Title is fueling initiatives within organizations to address health care priorities in the areas of transactions, privacy, and security?

1. A. Title I.
2. B. Title II
3. C. Title III
4. D. Title IV.
5. E. Title V.

Correct Answer: B

Select the best statement regarding the definition of the term "use" as used by the HIPAA regulations.

1. A. "Use" refers to the release, transfer, or divulging of IIHI between various covered entities
2. B. "Use" refers to adding, modifying and deleting the PHI by other covered entities.
3. C. "Use" refers to utilizing, examining, or analyzing IIHI within the covered entity
4. D. "Use" refers to the movement of de-identified information within an organization.
5. E. "Use" refers to the movement of information outside the entity holding the information

Correct Answer: C

This Administrative Safeguard standard implements policies and procedures to ensure that all members of its workforce have appropriate access to electronic information.

1. A. Security Awareness Training
2. B. Workforce Security
3. C. Facility Access Controls
4. D. Workstation Use
5. E. Workstation Security

Correct Answer: B

The code set that must be used to describe or identify outpatient physician services and procedures is:

1. A. ICD-9-CM, Volumes 1 and 2
2. B. CPT-4
3. C. CDT
4. D. ICD-9-CM, Volume 3
5. E. NDC

Correct Answer: B