A Study of IT Security Policies

Outlet Title

MCIS 2018 Proceedings

Authors

Hassan Alyami, Dakota State University
James Boit, Dakota State University
Omar F. El-Gayar, Dakota State UniversityFollow

Document Type

Conference Proceeding

Publication Date

2018

Abstract

Over the past decade, Saudi Arabia has made remarkable efforts in implementing Electronic Health Record (EHR) technologies across the facets of its healthcare facilities. While the implementation has shown enormous promise for advancing healthcare delivery in the Kingdom, concerns over security of patient data has, however, emerged. There are emerging evidences showing that EHR systems have vulnerabilities that deserve attention. This study explores the existing Information technology security policies at two distinct types of hospitals (a government controlled and a private owned), from a policy perspective, and the end users perspectives (i.e., physicians, nurses, Information technology administrators, and allied health practitioners). Using a mixed methodology, the study aims to further determine the differences in security policies between the two hospital types. Particularly, the study investigates the relationship between the security policies at these hospital types, and the security of their EHR systems from the perspectives of the end users of EHR technologies.

Recommended Citation

Alyami, Hassan; Boit, James; and El-Gayar, Omar F., "A Study of IT Security Policies" (2018). Research & Publications. 398.
https://scholar.dsu.edu/bispapers/398