Improving the information security management: an industrial study in the privacy of electronic patient records

He, Y., Johnson, C. , Lu, Y. and Lin, Y. (2014) Improving the information security management: an industrial study in the privacy of electronic patient records. In: 2014 IEEE 27th International Symposium on Computer-Based Medical Systems (CBMS), New York, NY, 27-29 May 2014, pp. 525-526. (doi:10.1109/CBMS.2014.121)

Full text not currently available from Enlighten.

Publisher's URL: http://dx.doi.org/10.1109/CBMS.2014.121

Abstract

Adverse incidents in the privacy of patients' medical records can result in multiple negative impacts. Effective mechanisms are needed to communicate the lessons from the incidents into the Information Security Management Systems (ISMS) so as to prevent similar incidents. The Generic Security Template (G.S.T.) has been developed to enhance current mechanism and has demonstrated significant benefits in communicating the lessons compared to the more conventional use of text-based incident reports. This paper extends the work to evaluate the G.S.T. in healthcare. A case study with healthcare professionals working in a China healthcare organization shows that, the G.S.T. can enhance the current mechanism in communicating the lessons with the ISMS.

Item Type:Conference Proceedings
Status:Published
Refereed:Yes
Glasgow Author(s) Enlighten ID:Lu, Mr Yu and He, Miss Ying and Johnson, Professor Chris
Authors: He, Y., Johnson, C., Lu, Y., and Lin, Y.
Subjects:Q Science > QA Mathematics > QA75 Electronic computers. Computer science
College/School:College of Science and Engineering > School of Computing Science

University Staff: Request a correction | Enlighten Editors: Update this record