Which of the following are policies and procedures required by HIPAA that address the management of computer resources and security?

The correct choice is based on the comprehensive framework that HIPAA establishes for the management of sensitive health information. Administrative safeguards are a key component of the HIPAA Security Rule, which encompasses the policies and procedures necessary to manage the selection, development, implementation, and maintenance of security measures to protect electronic protected health information (ePHI).

These safeguards cover a variety of areas, including the organization’s security management processes, workforce training, and security evaluations. By implementing administrative safeguards, covered entities can ensure the proper handling of computer resources and maintain a secure environment for electronic health data. This kind of protection is fundamental not just in terms of technology, but also in governing the behaviors and responsibilities of personnel who access and manage this sensitive information.

While access controls, audit safeguards, and role-based controls are all important elements of information security, they are typically categorized within the broader administrative safeguards. Access controls specifically deal with who can access the information, audit safeguards refer to tracking access and usage of data, and role-based controls ensure that only authorized personnel can perform specific tasks. However, these aspects fall under the umbrella of policies and practices outlined in the administrative safeguards, making it the most comprehensive and relevant answer to the question.