Week 12 – IT Risk Management (II)
Online discussion questions – Apr 13
- What should be among the preventative measures for a failure due to personal devices?
- From IT Adventures Ch. 17, What is Mr. Williams’ point with respect to his poker analogy? What is Mr. Barton’s point with respect to his risk escalator analogy?
- Did Mr. Williams make a right call by doing nothing?
- Any other trade-off situation in risk and security management?
Online discussion questions – Apr 10
- How would you compare CareGroup’s response to the network collapse to IVK’s?
- In what respect did CareGroup do a better job than IVK did in managing the crisis?
- Why is leadership important in crisis management?
- In crisis management, why is support from a CEO and other executives important?
In-class discussion questions for Apr 13
We will discuss these questions on Mon, Apr 13. Do not pose comments on this.
- What kind of a disaster situation can we think of at a database? What should be among the preventative measures for a database failure?
- What kind of a disaster situation can we think of from personal devices? What should be among the preventative measures for them?
- With rigorous security procedures and policies, we would lose what?
- How much would it cost for CareGroup to implement all the 10 lessons?
- Why has Mr. Williams decided to do nothing and not to disclose the incident? What was his thinking?
Week 12 – IT Risk Management (II) – class slides and videos (UPDATED)
Air France Flight 447 – ABC Nightline (https://www.youtube.com/watch?v=ZFyrTUN5_as)
CIO Spotlight – John Halamka – Healthcare IT News (https://www.youtube.com/watch?v=N-UrOYYTQPY)
Electronic Medical Records – NHPTV (http://video.nhptv.org/video/2200247447/)
Electronic Prescribing System – YouTube (http://www.youtube.com/watch?v=967Qkgjoazo)
Inside the Heathcare.gov Trauma Team – MSNBC (http://www.msnbc.com/the-last-word/watch/inside-the-trauma-team-that-saved-obamacare-173998659571)
Online discussion questions – Apr 8
- Any other IT failure that could make a life-and-death situation?
- If you are Mr. Halamka and do not know the cause of network collapse, how would you figure out what is happening?
- Any other IT systems that hospitals depend on?
In-class discussion questions for Apr 10
We will discuss these questions on Fri, Apr 10. Do not pose comments on this.
- How could manage to recover from its network collapse so fast (in jCareGroup ust 3 and ½ days) with no fatality?
- In what respect did CareGroup do a better job than IVK did in managing the crisis?
- What were the decisive, crucial decisions that Mr. Halamka, CIO, had made in the midst of the crisis?
- How would you evaluate the 10 lessons learned?
- The 10 lessons learned mostly center around the network. Are there any other IT resources that warrant similar attention, control, and management for a company to prevent a collapse?
- What kind of a disaster situation can we think of at a data center? What should be among the preventative measures for a data center failure?
- What kind of a disaster situation can we think of at a database? What should be among the preventative measures for a database failure?
In-class discussion questions for Apr 8
We will discuss these questions on Wed, Apr 8. Do not post comments on this.
- What happened in Caregroup?
- What does it mean by “the network collapse?” (p. 5)
- Why and how could a failure in hospital IT systems kill a patient?
- What caused the network collapse at CareGroup in 2002?
- How on earth could one software program instigate the collapse of the whole network?
- What were the compounding factors in this incident? What exacerbated it?
- What had made CareGroup’s network so complex and vulnerable to a complete failure?
Week 12 – Caregroup Case – Brief Guidelines
Due by Wednesday, April 8, 10AM
- What happened at Caregroup on Nov. 13, 2002? What caused this incident and what exacerbated it?
- How did Caregroup manage to recover from the incident?
- What were the major and decisive decisions that Mr. Halmaka and the senior management team had made?
Your brief does not need to include p. 1-4 and Lesson Learned section (p. 10-12), but DO NOT SKIP TO READ THEM.