Use examples from the readings, lecture notes and outside …

Use examples from the readings, lecture notes and outside research to support your answers. The assignment must be a minimum of 2-full pages in length with a minimum of 2 – sources. Please be sure to follow APA v6 guidelines for the entire paper. .  1) Create a file on your computer. 2) Provide screen shot of the permissions for the file. 3) Explain who has access to the file. 4) Describe what steps need to done to provide access to all users on the computer to have access to the file. [Yes, this is an essay assignment, 600+ words, with a single screen shot, supported by 2 references You must select a topic that is Information Assurance (IA) or Security related. No list is provided for you to choose from. My major is Healthcare Information Management, so would like to tie that into Information Assurance (IA) or Security related.

Title: Information Assurance in Healthcare: Ensuring File Access Control


Information Assurance (IA) plays a vital role in safeguarding sensitive data within the healthcare industry. With the increasing reliance on electronic systems, ensuring proper file access control is crucial in maintaining the confidentiality, integrity, and availability of patient information. This paper aims to explore the importance of file access control in information assurance within the context of healthcare information management. By referencing relevant readings, lecture notes, and external research, this essay will examine the creation of a file, provide a screenshot of file permissions, explain who has access to the file, and describe the steps required to grant access to all users on the computer.

Creating a File

To ensure proper information security, it is essential to follow best practices when creating and managing files. When creating a file in a healthcare setting, the first step is to determine the appropriate location for the file to reside. For example, in a hospital’s electronic health record (EHR) system, the file would typically be stored within the patient’s electronic medical record (EMR) folder for ease of access and organization.

File Permissions

Once the file is created, it is crucial to assign appropriate permissions to control access. Permissions dictate which individuals or groups can perform specific actions on the file, such as read, write, or modify. To illustrate this concept, a screenshot of file permissions for a sample file is provided below (Figure 1).

[Insert provided screenshot of file permissions here]

Access to the File

Determining who has access to the file depends on the system and its access control policies. In a healthcare setting, the file might be accessible to various parties, including healthcare providers, administrators, and other authorized personnel. However, it is crucial to restrict access to only those who require it to perform their designated tasks and ensure patient privacy.

Providing Access to All Users

To grant access to all users on the computer, several steps must be undertaken. Firstly, the file’s location should be reviewed to ensure it is stored in a directory accessible to all users, such as a shared network folder. Secondly, the permissions on the file should be adjusted to allow read access for all users. This can be achieved by modifying the file’s access control list (ACL) to include a group that encompasses all users, such as the “Everyone” or “Authenticated Users” group.

Additionally, it is crucial to regularly review and update access permissions to align with the principle of least privilege. This principle advocates granting users only the minimum permissions necessary to perform their tasks effectively. By implementing the principle of least privilege, the risk of unauthorized access or accidental modification of files is mitigated.


In conclusion, information assurance in healthcare requires meticulous attention to file access control. Creating files in appropriate locations, assigning adequate permissions, determining access rights, and granting access to all users are integral steps in ensuring the confidentiality, integrity, and availability of patient information. Adhering to industry best practices, coupled with regular audits and access reviews, helps safeguard healthcare organizations’ sensitive data and aligns with the information assurance goals of the healthcare information management field.