An employee at a healthcare facility frequently enters patient data into a centralized system at a workstation located in a semi-public area of the hospital. Considering the risk of shoulder surfing, which of the following practices should be implemented to secure patient confidentiality?
Encrypt the hard drive of the workstation
Install a privacy screen on the workstation monitor
Enable two-factor authentication for system login
Change passwords every 30 days