EconPapers    
Economics at your fingertips  

EconPapers Home
About EconPapers

Working Papers
Journal Articles
Books and Chapters
Software Components

Authors

JEL codes
New Economics Papers

Advanced Search


EconPapers FAQ
Archive maintainers FAQ
Cookies at EconPapers

Format for printing

The RePEc blog
The RePEc plagiarism page

 

Selected Aspects of Information Security Management in Entities Performing Medical Activity

Dominika Lisiak-Felicka, Pawel Nowak and Maciej Szmit
Additional contact information
Dominika Lisiak-Felicka: Department of Computer Science in Economics, University of Lodz, Poland
Pawel Nowak: Department of Computer Science in Economics, University of Lodz, Poland
Maciej Szmit: Department of Computer Science, University of Lodz, Poland

International Journal of Operations Management, 2021, vol. 1, issue 2, 30-37

Abstract: The article is devoted to the issues related to an information security management in medical entities. The healthcare entities have been amongst the prime targets for hackers for several years. According to the IBM report “The 2016 X-Force Cyber Security Intelligence Index†in 2015 most of the attacks were carried out against these entities. The years 2016 and 2017 also witnessed spectacular cyberattacks, for example: medical records breach of 3.3 million people because of an unauthorized access to a server in the US, some WannaCry ransomware attacks on the UK hospitals, some MongoDB Database Leaks in the US or NotPetya ransomware attacks in the US hospitals. Entities performing medical activity are processing personal data concerning health that is classified as a “sensitive data†and needs a special protection. The article presents the results of the survey – interviews with IT managers (or designated persons) in entities performing medical activity in Lodz Voivodeship in Poland. The aim of the research was analysis and evaluation of information security management in these entities. The interviews had been performed between December, 2017 and January, 2018. As the results of the research, the ways of information security management were identified (in particular such aspects as: characteristics of the information security teams, information security management system auditing, risk management, information security incidents, budgets for information security, training and the General Data Protection Regulation implementation). The paper also describes the types of information that should be protected in healthcare entities and characteristic of surveyed entities that subordinate to the local government of Lodz Voivodeship in Poland.

Keywords: Cybersecurity; Entities performing medical activity; Hospitals; Information security; Information security management (search for similar items in EconPapers)
JEL-codes: M00 (search for similar items in EconPapers)
Date: 2021
References: View references in EconPapers View complete reference list from CitEc
Citations:

Downloads: (external link)
https://researchleap.com/wp-content/uploads/2021/0 ... ment_in_Entities.pdf (application/pdf)
https://researchleap.com/selected-aspects-of-infor ... ng-medical-activity/ (text/html)

Related works:
This item may be available elsewhere in EconPapers: Search for items with the same title.

Export reference: BibTeX RIS (EndNote, ProCite, RefMan) HTML/Text

Persistent link: https://EconPapers.repec.org/RePEc:mgs:iojome:v:1:y:2021:i:2:p:30-37

DOI: 10.18775/ijom.2757-0509.2020.12.4004

Access Statistics for this article

More articles in International Journal of Operations Management from Inovatus Services Ltd.
Bibliographic data for series maintained by Bojan Obrenovic ().

 
Share

RePEc
This site is part of RePEc and all the data displayed here is part of the RePEc data set.

Is your work missing from RePEc? Here is how to contribute.

Questions or problems? Check the EconPapers FAQ or send mail to .

Örebro UniversityEconPapers is hosted by the School of Business at Örebro University.

Page updated 2025-03-19
Handle: RePEc:mgs:iojome:v:1:y:2021:i:2:p:30-37