Title :
Improving the Information Security Management: An Industrial Study in the Privacy of Electronic Patient Records
Author :
Ying He ; Johnson, Chris ; Yu Lu ; Yixia Lin
Author_Institution :
Sch. of Comput. Sci., Univ. of Glasgow, Glasgow, UK
Abstract :
Adverse incidents in the privacy of patients´ medical records can result in multiple negative impacts. Effective mechanisms are needed to communicate the lessons from the incidents into the Information Security Management Systems (ISMS) so as to prevent similar incidents. The Generic Security Template (G.S.T.) has been developed to enhance current mechanism and has demonstrated significant benefits in communicating the lessons compared to the more conventional use of text-based incident reports. This paper extends the work to evaluate the G.S.T. in healthcare. A case study with healthcare professionals working in a China healthcare organization shows that, the G.S.T. can enhance the current mechanism in communicating the lessons with the ISMS.
Keywords :
data privacy; electronic health records; health care; security of data; China healthcare organization; GST; Generic Security Template; ISMS; electronic patient record privacy; healthcare professionals; information security management systems; medical record privacy; Educational institutions; Information security; Medical services; Organizations; Standards organizations;
Conference_Titel :
Computer-Based Medical Systems (CBMS), 2014 IEEE 27th International Symposium on
Conference_Location :
New York, NY
DOI :
10.1109/CBMS.2014.121
