ISC2 Governance, Risk and Compliance (CGRC) Practice Question
During a HIPAA compliance review, you must categorize proposed controls. Which of the following controls meets the definition of an administrative safeguard under the HIPAA Security Rule?
Encrypting electronic protected health information stored on laptops.
Implementing role-based access controls in the electronic health record system.
Conducting regular workforce security awareness training sessions.
Requiring badge readers to unlock the data center door.
The HIPAA Security Rule organizes protections for electronic protected health information (ePHI) into three safeguard categories: administrative (45 CFR 164.308), physical (45 CFR 164.310), and technical (45 CFR 164.312). Workforce security awareness and training is explicitly identified in 45 CFR 164.308(a)(5) as an administrative safeguard because it focuses on policies and procedures to manage the conduct of the workforce and ensure they understand their security responsibilities.
Role-based access control and encryption are technical safeguards because they rely on information system mechanisms (164.312).
Requiring badge readers for data-center doors is a physical safeguard that restricts physical access to facilities (164.310).
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is the HIPAA Security Rule?
Open an interactive chat with Bash
What are administrative safeguards under HIPAA?
Open an interactive chat with Bash
How do administrative safeguards differ from physical and technical safeguards?
Open an interactive chat with Bash
ISC2 Governance, Risk and Compliance (CGRC)
Security and Privacy Governance, Risk Management, and Compliance Program
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99
$19.99/mo
Billed monthly, Cancel any time.
3 Month Pass
$44.99
$14.99/mo
One time purchase of $44.99, Does not auto-renew.
MOST POPULAR
Annual Pass
$119.99
$9.99/mo
One time purchase of $119.99, Does not auto-renew.
BEST DEAL
Lifetime Pass
$189.99
One time purchase, Good for life.
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .