An organizational view on formulating information security policies in hospitals
This research aimed at understanding the participation of the managers in the process of devising strategies of a policy on information security, identifying the guiding elements to make an analysis structure about hospitals. The object of this research was composed by five hospitals, chosen accordi...
Saved in:
| Main Author: | |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
Centro Universitário São Camilo
2011-07-01
|
| Series: | O Mundo da Saúde |
| Subjects: | |
| Online Access: | https://revistamundodasaude.emnuvens.com.br/mundodasaude/article/view/547 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1849473577464627200 |
|---|---|
| author | Luis Hernan Contreras Pinochet |
| author_facet | Luis Hernan Contreras Pinochet |
| author_sort | Luis Hernan Contreras Pinochet |
| collection | DOAJ |
| description | This research aimed at understanding the participation of the managers in the process of devising strategies of a policy
on information security, identifying the guiding elements to make an analysis structure about hospitals. The object of this research
was composed by five hospitals, chosen according to the following criteria: type, duration and position in the market, and easy access
to data. This research used a multi-case and cross-section study design of a contextual and process and exploratory and descriptive
nature to create a categorical classification to develop a theory based on data. This research conducted the development of an analysis
structure that was named as “Continuous Follow-up Cycle for the Development of a Policy on Information Security about Hospitals”.
With this structure, it was possible to identify the duties about the information security in the different organizational levels, defining
responsibilities as to the compliance, evaluation and audit verification and implementation and establishing guidelines needed for all
the protection measures that will be implemented. As a result, it was observed that the studied hospitals in their different natures
showed clear deficiencies to formulate a policy on information security due to the need for clear definitions in the roles of the several
organizational groups and for guiding elements for the perception in the decision-making of the managers. |
| format | Article |
| id | doaj-art-ae8217b5a2f743f9afbaccaffe422712 |
| institution | Kabale University |
| issn | 0104-7809 1980-3990 |
| language | English |
| publishDate | 2011-07-01 |
| publisher | Centro Universitário São Camilo |
| record_format | Article |
| series | O Mundo da Saúde |
| spelling | doaj-art-ae8217b5a2f743f9afbaccaffe4227122025-08-20T03:24:06ZengCentro Universitário São CamiloO Mundo da Saúde0104-78091980-39902011-07-01353278289478An organizational view on formulating information security policies in hospitalsLuis Hernan Contreras Pinochet0Centro Universitário São Camilo-SP, Brasil.This research aimed at understanding the participation of the managers in the process of devising strategies of a policy on information security, identifying the guiding elements to make an analysis structure about hospitals. The object of this research was composed by five hospitals, chosen according to the following criteria: type, duration and position in the market, and easy access to data. This research used a multi-case and cross-section study design of a contextual and process and exploratory and descriptive nature to create a categorical classification to develop a theory based on data. This research conducted the development of an analysis structure that was named as “Continuous Follow-up Cycle for the Development of a Policy on Information Security about Hospitals”. With this structure, it was possible to identify the duties about the information security in the different organizational levels, defining responsibilities as to the compliance, evaluation and audit verification and implementation and establishing guidelines needed for all the protection measures that will be implemented. As a result, it was observed that the studied hospitals in their different natures showed clear deficiencies to formulate a policy on information security due to the need for clear definitions in the roles of the several organizational groups and for guiding elements for the perception in the decision-making of the managers.https://revistamundodasaude.emnuvens.com.br/mundodasaude/article/view/547information technology. health management. health manager. |
| spellingShingle | Luis Hernan Contreras Pinochet An organizational view on formulating information security policies in hospitals O Mundo da Saúde information technology. health management. health manager. |
| title | An organizational view on formulating information security policies in hospitals |
| title_full | An organizational view on formulating information security policies in hospitals |
| title_fullStr | An organizational view on formulating information security policies in hospitals |
| title_full_unstemmed | An organizational view on formulating information security policies in hospitals |
| title_short | An organizational view on formulating information security policies in hospitals |
| title_sort | organizational view on formulating information security policies in hospitals |
| topic | information technology. health management. health manager. |
| url | https://revistamundodasaude.emnuvens.com.br/mundodasaude/article/view/547 |
| work_keys_str_mv | AT luishernancontreraspinochet anorganizationalviewonformulatinginformationsecuritypoliciesinhospitals AT luishernancontreraspinochet organizationalviewonformulatinginformationsecuritypoliciesinhospitals |