CHIMA NCE
Comprehensive Resource To Help You Ace 2026-2027
Exams Includes Frequently Tested Questions With
ELABORATED 100% Correct COMPLETE SOLUTIONS
Guaranteed Pass First Attempt!! Current Update!!
Instant Download Pdf
1. The three objectives associated with information security are:
a. privacy, security, confidentiality.
b. confidentiality, integrity, availability.
c. confidentiality, privacy, integrity.
d. integrity, data quality, privacy. - Correct Answer: b. confidentiality, integrity,
availability.
2. What type of risk is the unauthorized disclosure of personal health
information?
a. Security risk.
b. Business risk.
c. Privacy risk.
d. Safety risk. - Correct Answer: c. Privacy risk.
3. Which of the following would NOT be classified as an operational risk?
a. Human factors issues.
,b. Political influence.
c. Business interruption.
d. Lack of skilled human resources - Correct Answer: d. Lack of skilled human
resources
4· Project risks may pose a problem for e-health implementation. The 4 major
threats associated
a. project failure, scope compromise, timetable delay, cost overruns.
b. incompatible technology, security issues, quality issues, cost overruns.
c. project failure, quality issues, contractual issues, staff issues
d. stakeholder buy-in, score compromise, timetable delay, a budgetary
insufficiency. - Correct Answer: a. project failure, scope compromise,
timetable delay, cost overruns.
5. Which of the following is concerned with ensuring that information is complete,
accurate and up to-date and that the information is not corrupted in any way?
a. Confidentiality.
b. Integrity.
c. Availability.
d. Security. - Correct Answer: b. Integrity.
6. Which of the following is concerned with ensuring that personal health
information is available to authorized users when it is needed?
a. Confidentiality.
b. Integrity.
,c. Availability.
d. Security. - Correct Answer: c. Availability.
7. Which of the following is concerned with ensuring that personal health
information is protected from unauthorized access, use and disclosure?
a. Confidentiality.
b. Integrity.
c. Availability.
d. Security. - Correct Answer: a. Confidentiality.
8. Which of the following is NOT a security risk?
a. Loss of Personal Health Information.
b. Corruption or unauthorized modification of PHI.
c. Loss of critical information and communication technologies (ICT) services.
d. Inability to meet service levels. - Correct Answer: d. Inability to meet service
levels.
9. A virus attacks a hospital's information systems and permanently destroys
some Personal Health Information. What type of risk would this be categorized
as?
a. Safety risk.
b. Privacy risk.
c. Security risk.
d. Integrity risk. - Correct Answer: c. Security risk.
, 10. A patient is denied access to their own personal health Information. Which
risk category would this event be classified under?
a. Security risk.
b. Privacy risk.
c. Operational risk.
d. Business risk. - Correct Answer: b. Privacy risk.
11. A new medication administration system is implemented in a health care
organization. Unfortunately, the IT department did not involve front-line users in
the testing of possible systems before choosing and implementing one. The user
interface of the new system is not user friendly and many data entry errors are
occurring related to patient medications. What type of risk is this?
a. Safety risk.
b. Security risk.
c. Privacy risk.
d. Business risk. - Correct Answer: a. Safety risk.
12. Incompatible technology, obsolescence, inability to meet service levels and
lack of skilled human resources are e-health issues associated with what type of
risk?
a. Project risks.
b. Business risks.
c. Operational risks.
d. Strategic risks. - Correct Answer: c. Operational risks.
Comprehensive Resource To Help You Ace 2026-2027
Exams Includes Frequently Tested Questions With
ELABORATED 100% Correct COMPLETE SOLUTIONS
Guaranteed Pass First Attempt!! Current Update!!
Instant Download Pdf
1. The three objectives associated with information security are:
a. privacy, security, confidentiality.
b. confidentiality, integrity, availability.
c. confidentiality, privacy, integrity.
d. integrity, data quality, privacy. - Correct Answer: b. confidentiality, integrity,
availability.
2. What type of risk is the unauthorized disclosure of personal health
information?
a. Security risk.
b. Business risk.
c. Privacy risk.
d. Safety risk. - Correct Answer: c. Privacy risk.
3. Which of the following would NOT be classified as an operational risk?
a. Human factors issues.
,b. Political influence.
c. Business interruption.
d. Lack of skilled human resources - Correct Answer: d. Lack of skilled human
resources
4· Project risks may pose a problem for e-health implementation. The 4 major
threats associated
a. project failure, scope compromise, timetable delay, cost overruns.
b. incompatible technology, security issues, quality issues, cost overruns.
c. project failure, quality issues, contractual issues, staff issues
d. stakeholder buy-in, score compromise, timetable delay, a budgetary
insufficiency. - Correct Answer: a. project failure, scope compromise,
timetable delay, cost overruns.
5. Which of the following is concerned with ensuring that information is complete,
accurate and up to-date and that the information is not corrupted in any way?
a. Confidentiality.
b. Integrity.
c. Availability.
d. Security. - Correct Answer: b. Integrity.
6. Which of the following is concerned with ensuring that personal health
information is available to authorized users when it is needed?
a. Confidentiality.
b. Integrity.
,c. Availability.
d. Security. - Correct Answer: c. Availability.
7. Which of the following is concerned with ensuring that personal health
information is protected from unauthorized access, use and disclosure?
a. Confidentiality.
b. Integrity.
c. Availability.
d. Security. - Correct Answer: a. Confidentiality.
8. Which of the following is NOT a security risk?
a. Loss of Personal Health Information.
b. Corruption or unauthorized modification of PHI.
c. Loss of critical information and communication technologies (ICT) services.
d. Inability to meet service levels. - Correct Answer: d. Inability to meet service
levels.
9. A virus attacks a hospital's information systems and permanently destroys
some Personal Health Information. What type of risk would this be categorized
as?
a. Safety risk.
b. Privacy risk.
c. Security risk.
d. Integrity risk. - Correct Answer: c. Security risk.
, 10. A patient is denied access to their own personal health Information. Which
risk category would this event be classified under?
a. Security risk.
b. Privacy risk.
c. Operational risk.
d. Business risk. - Correct Answer: b. Privacy risk.
11. A new medication administration system is implemented in a health care
organization. Unfortunately, the IT department did not involve front-line users in
the testing of possible systems before choosing and implementing one. The user
interface of the new system is not user friendly and many data entry errors are
occurring related to patient medications. What type of risk is this?
a. Safety risk.
b. Security risk.
c. Privacy risk.
d. Business risk. - Correct Answer: a. Safety risk.
12. Incompatible technology, obsolescence, inability to meet service levels and
lack of skilled human resources are e-health issues associated with what type of
risk?
a. Project risks.
b. Business risks.
c. Operational risks.
d. Strategic risks. - Correct Answer: c. Operational risks.
