Date of Award

Spring 5-18-2015

Degree Type


Degree Name

Master of Science (MS)

First Advisor

Margaret McCoey


Nurse practitioners are increasingly using mobile devices to access electronic medical records, as the use of the devices increases so does the risk of a potential breach. This is a direct result of technological advances such as larger storage capacities, faster computing speeds, and better portability/connectivity (Torrieri, 2011). These devices include: mobile phones, tablets, and laptops. The use of these devices has greatly facilitated the work of Nurse Practitioners, by allowing them to have instant access to patient records, health history and recommended treatment plans (Ventola, 2014). However, seventy-three percent of all mobile users stated that they are not always aware of security threats or best practices when working with mobile devices (Hickey, 2007). It is important for healthcare organizations to have in place policies and procedures, and processes for mobile device use and to educate their employees on these topics (Kolbasuk, 2011). Increased security knowledge is a direct result of training (Fisher, 2015).

The purpose of this project is to identify the risks associated with mobile device use by Nurse Practitioners, discuss the relevant laws, and provide an overview of relevant cases. Then, the project will create a framework consisting of a Standard Operating Procedure, mobile device privacy and security educational power point, and post education knowledge assessment questionnaire. The training will focus on the importance of developing best practices, including developing strong passwords, enabling encryption, keeping security software up to date, and maintaining physical control of the device at all times. In addition, to create a security culture where the Nurse Practitioners receive annual training on securing Protected Health Information, or PHI, on their mobile devices.