Skip to main content

ISLA Santarém 26685

Health Information Security

Data and Technology Management in Health
  • ApresentaçãoPresentation
      
  • ProgramaProgramme
    1. Introduction to Computer Security. 2. Threats: Types of threats. Sources of threats. 3. Security Policies: Development and implementation. Security standards. 4. Risk Management: Risk identification and assessment. Risk mitigation strategies. 5. Security Technologies: Firewalls and intrusion detection/prevention systems. Encryption. Authentication and access control. 6. Auditing: Auditing objectives, principles, and techniques. 7. Auditing and Security Standards and Frameworks: COBIT. NIST. ISACA. 8. Incident Management: Planning and response. 9. Human Aspects of Security: Awareness and training. Social engineering and its techniques. 10. GDPR - General Data Protection Regulation and its application to the healthcare sector.
  • ObjectivosObjectives
    O1. Present the fundamental concepts of computer security. O2. Identify the main threats and risks that affect information systems, as well as the main controls to nullify them. O3. Discuss the fundamentals of health IT security policies. O4. Present security audit standards and frameworks. O5. Identify the fundamental principles of the GDPR and its application in healthcare. Competences: C1. Demonstrate knowledge of the main risks that affect information systems, as well as the main controls to eliminate them. C2. Specify and apply health security policies. C3. Use encryption mechanisms. C4. Discuss the human aspects related to IT security applied to healthcare.
  • BibliografiaBibliography
    Antunes, Luís (2018). Pôr em prática o RGPD - O que muda para nós e para as Organizações? FCA.  Bishop, M., Sullivan, E., & Ruppel, M. (2019). Computer security: art and science. Pearson. Easttom, C. (2023). Computer security fundamentals. Pearson IT Certification. Stallings, W., Brown, L., & Bauer, M. D. (2023). Computer security: principles and practice. USA: Pearson Education.
  • MetodologiaMethodology
    Synchronous distance learning: 1. Expository method: presentation of each of the content topics. 2. Demonstrative method: presentation and analysis of case studies aimed at consolidating knowledge. Face-to-face: 3. Practical exercises: solving application problems on the topics under study. Independent: 4. Guided research proposed by the teacher and case studies to deepen understanding of the content. The teacher provides feedback on students' conclusions/questions as well as on the exercises solved in class (Tutorial Guidance - OT), in person in the classroom and/or through the Moodle teaching/learning support platform.
  • LínguaLanguage
    Português
  • TipoType
    Semestral
  • ECTS
    4
  • NaturezaNature
    Mandatory
  • EstágioInternship
    Não
  • AvaliaçãoEvaluation

    Avaliação Curricular (contínua):
    - A1. Exercícios resolvidos em sala de aula.
    - A2. Trabalho teórico-prático (grupo).
    - A3. Teste final teórico-prático (individual).
    A classificação final é calculada através da fórmula Classificação Final =A1*0,2+A2*0,4+A3*0,4. O estudante é aprovado se obtiver classificação igual ou superior a 9,5 valores.
    Avaliação Final (A): O estudante realiza o exame teórico-prático (A=100%) e é aprovado se obtiver uma classificação igual ou superior a 9,5 valores em 20.
    Avaliação em Época de Recurso e Época Especial (A): O estudante realiza o exame teórico-prático (A=100%) e fica aprovado se obtiver uma classificação igual ou superior a 9,5 valores em 20.