A Framework for an Effective Information Security Awareness Program in Healthcare
Journal Title: International Journal of Advanced Computer Science & Applications - Year 2017, Vol 8, Issue 2
Abstract
Electronic Health Record (EHR) is a valuable asset of every healthcare and it needs to be protected. Human errors are recognized as the major information security threats to EHR systems. Employees who interact with EHR systems should be trained about the risks and hazards related to information security. However, there are limited studies regarding the effectiveness of training programs. The aim of this paper is to propose a framework that provides guidelines for healthcare organizations to select an effective information security training delivery method. In addition, this paper proposes a guideline to develop information security content for awareness training programs. Lastly, this study attempts to implement the proposed framework in a selected healthcare for evaluation. Hence, a serious game is developed as a training method to deliver information security content for the selected healthcare. An effective training program raises employees’ awareness toward information security with a long-term impact. It helps to gradually change employees’ behavior over time by reducing their negligence towards secure utilization of healthcare EHR systems.
Authors and Affiliations
Arash Ghazvini, Zarina Shukur
Keywords
Related Articles
- EP ID EP249134
- DOI 10.14569/IJACSA.2017.080226
- Views 74
- Downloads 0
A Smart Under-Frequency Load Shedding Scheme based on Takagi-Sugeno Fuzzy Inference System and Flexible Load Priority
This paper proposes a new smart under frequency load shedding (UFLS) scheme, based on Takagi-Sugeno (TS) fuzzy inference system and flexible load priority. The proposed scheme consists of two parts. First part consists o...
USING PENALIZED REGRESSION WITH PARALLEL COORDINATES FOR VISUALIZATION OF SIGNIFICANCE IN HIGH DIMENSIONAL DATA
In recent years, there has been an exponential increase in the amount of data being produced and disseminated by diverse applications, intensifying the need for the development of effective methods for the interactive vi...
An Evaluation of the Proposed Framework for Access Control in the Cloud and BYOD Environment
As the bring your own device (BYOD) to work trend grows, so do the network security risks. This fast-growing trend has huge benefits for both employees and employers. With malware, spyware and other malicious downloads,...
Designing of Hydraulically Balanced Water Distribution Network Based on GIS and EPANET
The main objectives of this paper are, designing and balancing of Water Distribution Network (WDN) based on loops hydraulically balanced method as well as using Geographical Information System (GIS) methodology with the...
A Modular Aspect-Oriented Programming Approach of Join Point Interfaces
This paper describes and analyzes the main differ-ences and advantages of the Join Point Interfaces (JPI) as an Aspect-Oriented Programming (AOP) approach for the modular software production concerning the standard aspec...