Health IT Security
Mock Exam
Course Introduction
Health IT Security explores the principles, practices, and technologies used to protect healthcare information systems from security threats and unauthorized access. The course covers topics such as risk management, regulatory requirements (including HIPAA and HITECH), security frameworks, data encryption, authentication methods, incident response planning, and the unique challenges of securing electronic health records (EHRs) and medical devices. Students will analyze real-world case studies and learn to assess vulnerabilities, implement security controls, and develop strategies to safeguard sensitive patient data in an evolving digital health landscape.
Recommended Textbook Health Information Technology 3rd Edition by Nadinia A. Davis
Available Study Resources on Quizplus
14 Chapters
874 Verified Questions
874 Flashcards
Source URL: https://quizplus.com/study-set/1089
Page 2
Chapter 1: Health Care Delivery Systems
Available Study Resources on Quizplus for this Chatper
69 Verified Questions
69 Flashcards
Source URL: https://quizplus.com/quiz/21474
Sample Questions
Q1) A synonym for "vocational nurse" is:
A) Registered nurse
B) Licensed practical nurse
C) Nurse practitioner
D) Advanced practice nurse
Answer: B
Q2) The patient was admitted to the hospital on Tuesday morning and died Tuesday evening. This patient is classified as a(n):
A) Inpatient
B) Outpatient
C) Both a and b
D) None of the above
Answer: A
Q3) Which is not an example of an allied health professional?
A) Respiratory Therapist
B) Surgical Technologist
C) Gastroenterologist
D) Dietician
Answer: C
To view all questions and flashcards with answers, click on the resource link above.
Page 3
Chapter 2: Collecting Health Care Data
Available Study Resources on Quizplus for this Chatper
74 Verified Questions
74 Flashcards
Source URL: https://quizplus.com/quiz/21475
Sample Questions
Q1) Why is it important to have a standard to collect data when organizing and analyzing data?
Answer: It is important to ensure data relevancy when organizing data. In other words, all of the data need to be related in order to provide accurate information. For example, if out of 100 data samples for gender, four data samples state the race, the information is not valid or accurate.
Q2) Data that pertain to the patient's personal life and personal habits, such as marital status and religion, is called _______ data.
Answer: socioeconomic
Q3) What is the difference between data and information?
Answer: Data constitute a component of information. To illustrate, data include a patient's reason for admission. Information is when all of the data are collected and analyzed to determine trends in the data.
Q4) Data collected about the party who will pay for the patient's health care is _______ data.
Answer: financial
Q5) A collection or series of related characters is a ________. Answer: field
To view all questions and flashcards with answers, click on the resource link above. Page 4
Chapter 3: Electronic Health Records
Available Study Resources on Quizplus for this Chatper
67 Verified Questions
67 Flashcards
Source URL: https://quizplus.com/quiz/21476
Sample Questions
Q1) Which entity fosters collaboration of the public sector and private sector through the "Connecting for Health" initiative to improve patient care by promoting standards for electronic medical information?
A) Institute of Medicine
B) National Committee on Vital and Health Statistics
C) Markle Foundation
D) Consolidated Health Informatics
Answer: C
Q2) What is a benefit to an interoperable system?
A) Eliminate the need for redundant tests.
B) More health care employees will have access to patient information.
C) Less training will be required to use the EHR systems.
D) Physicians will have to spend more time entering orders in multiple systems.
Answer: A
Q3) A series of steps to produce a final result or outcome, which describes how the electronic record moves from one electronic component or work area (queue) to another, is called _______.
Answer: workflow
Q4) A method used to identify records in an electronic system is called __________.
Answer: indexing
To view all questions and flashcards with answers, click on the resource link above. Page 5
Chapter 4: Acute Care Records
Available Study Resources on Quizplus for this Chatper
47 Verified Questions
47 Flashcards
Source URL: https://quizplus.com/quiz/21477
Sample Questions
Q1) CMS allows some patients to stay in the hospital up to 48 hours for monitoring without being admitted. This is called _____________ status.
A) elective
B) observation
C) emergency
D) urgent
Q2) In acute care, physician's progress notes are:
A) Written at least daily to validate the need for care
B) Sometimes collected by physician residents, provided they are countersigned by the attending physician
C) Only collected by the attending physician
D) Both A and B
Q3) During registration, the patient signs a(n) _____________ to grant the hospital permission to provide general diagnostic and therapeutic care, as well as to release information to a third party payer.
Q4) If a health care professional is working under the supervision of another, such as a resident being supervised by an attending physician, then the notes written by that professional must be _________________ by the supervisor.
To view all questions and flashcards with answers, click on the resource link above.
6
Chapter 5: Health Information Management Processing
Available Study Resources on Quizplus for this Chatper
69 Verified Questions
69 Flashcards
Source URL: https://quizplus.com/quiz/21478
Sample Questions
Q1) All of the following are steps in postdischarge processing EXCEPT:
A) Coding
B) Abstracting
C) Chart retrieval
D) Concurrent analysis
Q2) When the HIM department obtains control of the records, a process must be in place to determine whether all records have been received. Describe this process.
Q3) In a paper record environment, _______________ refers to the maintenance of the same page order both predischarge and postdischarge.
Q4) The following are types of internal controls EXCEPT _____ controls.
A) Preventive
B) Retrospective
C) Corrective
D) Detective
Q5) You have just checked in all of the records received from the nursing unit. One record that was received is not on your discharge register. What could have happened? How do you determine what to do with the extra record?
Q6) Another word for an incomplete system is a ______________.
To view all questions and flashcards with answers, click on the resource link above. Page 7
Chapter 6: Code Sets
Available Study Resources on Quizplus for this Chatper
48 Verified Questions
48 Flashcards
Source URL: https://quizplus.com/quiz/21479
Sample Questions
Q1) CPT-4 is copywritten by what organization?
Q2) Describe the difference between nomenclature and classification.
Q3) Which of the following code sets are alphanumeric?
A) ICD-10-PCS
B) ICD-10-CM
C) CPT
D) SNOMED-CT
E) Both a and b
F) All of the above
Q4) Some common uses for coded data include all of the following EXCEPT:
A) Case mix analysis
B) Comparative analysis
C) Reimbursement
D) All of the above are common uses.
Q5) All of the following organizations develop, report, and maintain code sets for health care purposes except the:
A) Joint Commission
B) American Medical Association
C) American Psychiatric Association
D) International Health Terminology Standards Development Organization
Page 8
To view all questions and flashcards with answers, click on the resource link above.
Chapter 7: Reimbursement
Available Study Resources on Quizplus for this Chatper
69 Verified Questions
69 Flashcards
Source URL: https://quizplus.com/quiz/21480
Sample Questions
Q1) The basis for payment for skilled nursing facility (SNF) services for Medicare patients is:
A) RUGs
B) RBRVS
C) MDS
D) UHDDS
Q2) One major difference between a PPO and an HMO is:
A) Under PPOs, patients can choose any health care provider without penalty
B) HMOs require co-pays
C) HMOs do not typically reimburse for out-of-network providers
D) PPOs require co-pays
Q3) Under normal circumstances, prospective payment systems take into consideration all of the following EXCEPT:
A) Actual current charges
B) Diagnosis
C) Historical average charges
D) Procedures (treatments)
Q4) Explain the difference in healthcare coverage between an HMO and PPO for the patient.
Q5) How would someone use an unbilled list (DNFB)?
To view all questions and flashcards with answers, click on the resource link above. Page 9
Chapter 8: Health Information Management Issues in Other Care Settings
Available Study Resources on Quizplus for this Chatper
53 Verified Questions
53 Flashcards
Source URL: https://quizplus.com/quiz/21481
Sample Questions
Q1) Describe the unique data collection issues in radiology and laboratory services.
Q2) In an open access physician practice, patients do not need:
A) A co-pay
B) A referral
C) An appointment
D) Insurance
Q3) The minimum data set used for emergency room departments is also known as the:
A) UHDDS
B) UACDS
C) DEEDS
D) RAI
Q4) Ambulatory care services are for which type of patients?
A) Primary care physician office visit
B) Overnight observation at hospital
C) Hospice care visit
D) Behavioral health care visit
Q5) Multiple physicians who share facilities and resources and may also cooperate in rendering patient care are engaged in a __________.
Q7) How is the quantity of services measured in ambulatory care? Page 10
Q6) The mandated minimum data set for ambulatory care patients is the ________.
To view all questions and flashcards with answers, click on the resource link above. Page 11
Chapter 9: Managing Health Records
Available Study Resources on Quizplus for this Chatper
58 Verified Questions
58 Flashcards
Source URL: https://quizplus.com/quiz/21482
Sample Questions
Q1) A copier-like machine called a ____________ is used to convert paper-based records into digital images for a computerized health care record.
Q2) How long does the MPI need to be managed at the facility?
A) 5 years
B) 7 years
C) 10 years
D) Permanently
Q3) A numerical patient record identification system, which gives the patient a new number for each visit, is called _________numbering.
Q4) What can be done when health records are lost or destroyed inadvertently?
Q5) The machine used to input a paper document into a computerized imaging system is called a(n):
A) Copier
B) Indexer
C) Mapper
D) Scanner
Q6) A physical file called an ____________is used to identify an alternate location of a file in the paper-based health care record system.
To view all questions and flashcards with answers, click on the resource link above. Page 12
Chapter 10: Statistics
Available Study Resources on Quizplus for this Chatper
72 Verified Questions
72 Flashcards
Source URL: https://quizplus.com/quiz/21483
Sample Questions
Q1) A measure of variance called the ______________ shows how closely the observations are distributed around the mean.
Q2) Given a request for the number of Medicare CHF cases for the month of April, how would you query the database to sort the report?
A) Patient gender
B) Patient age
C) Financial class
D) Diagnosis
Q3) as the way in which a variance of values behaves over time is called a _________________.
Q4) The health information management professional uses the database created by the patient abstracts to query for reports. Can you explain and give an example of how this function operates?
Q5) The number of patients present in the health care facility, counted at the same time each day, is called the ______________.
Q6) The length of stay for Patient A is _______________.
Q7) When the clerk requests a report from a computer system, he or she is said to _________ the database.
Page 13
To view all questions and flashcards with answers, click on the resource link above.
Chapter 11: Quality and Uses of Health Information
Available Study Resources on Quizplus for this Chatper
67 Verified Questions
67 Flashcards
Source URL: https://quizplus.com/quiz/21484
Sample Questions
Q1) Health information may be analyzed to support a _________ campaign to promote the facility within its community.
Q2) Ensuring the documentation in a health record is complete is part of:
A) Quantitative analysis
B) Qualitative analysis
C) Utilization review
D) Case management
Q3) Who was W. Edward Deming and what was his quality management theory? Discuss his quality management principles.
Q4) To operate, the health care facility must obtain a license from:
A) The Joint Commission
B) AHA
C) NHQA
D) The state in which it is located
Q5) The term used to describe the continuous improvement of processes within a facility is:
A) QA
B) QM
C) PI
D) UM
Page 14
To view all questions and flashcards with answers, click on the resource link above.
Chapter 12: Confidentiality and Compliance
Available Study Resources on Quizplus for this Chatper
52 Verified Questions
52 Flashcards
Source URL: https://quizplus.com/quiz/21485
Sample Questions
Q1) The responsibility for harm or damage caused by actions or inactions is known as:
A) liability
B) tort
C) negligence
D) malpractice
Q2) Which of the following scenarios represents a HIPAA violation?
A) Nurses discussing Mrs. Logan's patient care inside Mrs. Carter's room
B) An HIM employee discusses the neighbor's medical history with their mother
C) A hospital employee reviewing the electronic medical record of a celebrity currently admitted to the facility
D) All of the above
Q3) __________ is permitted disclosure in which authorization is not required as long as state law allows the exception.
Q4) Individually identifiable health information that is transmitted or maintained in any form or medium by covered entities or their business associates is __________.
Q5) The period in which lawyers are preparing their case and obtaining documents and testimonies is called ______________.
To view all questions and flashcards with answers, click on the resource link above. Page 15
Chapter 13: Him Department Management
Available Study Resources on Quizplus for this Chatper
62 Verified Questions
62 Flashcards
Source URL: https://quizplus.com/quiz/21486
Sample Questions
Q1) ______________ involves analyzing the current situation, determining the goal, and strategizing to accomplish goals.
Q2) In addition, the director stated, the suspension procedure will be performed weekly (as approved in the bylaws). This is an example of a(n):
A) Plan
B) Goal
C) Objective
D) Mission
Q3) A process that describes how to comply with a policy is a _______________.
Q4) A ________________ involves the review of a function to determine all of the tasks or components that make up an employee's job.
Q5) List and briefly explain the basic functions of an HIM department.
Q6) Diamonte Hospital's fiscal year runs from October 1 through September 30. Which of the following months are in the third quarter?
A) January, February, March
B) April, May, June
C) July, August, September
D) October, November, December
To view all questions and flashcards with answers, click on the resource link above. Page 16
Chapter 14: Training and Development
Available Study Resources on Quizplus for this Chatper
49 Verified Questions
49 Flashcards
Source URL: https://quizplus.com/quiz/21487
Sample Questions
Q1) _____ are used to record the events, topics, and discussions of a meeting.
Q2) Members of the medical staff and other facility personnel also need to be oriented to the HIM department. Identify topics covered with the medical staff. Identify topics covered with other facility personnel.
Q3) The ___________ includes a continuing education requirement as a part of the certification/registration process. To maintain your credential, you must earn continuing education credits pertinent to the HIM profession.
Q4) The "R" in the common safety acronym RACE used to describe the employee's expected response to a fire means :
A) Red
B) Run
C) Rescue
D) Reassure
Q5) Many facilities require a training session before new employees are given access to their computer systems, and TJC requires that new employees complete this training within _____ days.
Q6) A written/typed communication tool used to communicate or provide information to members of an organization is a ___________.
To view all questions and flashcards with answers, click on the resource link above. Page 17