An information security governance framework for Australian primary care health providers

Donald C. Mcdermid, Rachel J. Mahncke, Patricia A.H. Williams

Research output: Contribution to conferencePaperpeer-review

2 Citations (Scopus)

Abstract

The competitive nature of business and society means that the protection of information, and governance of the information security function, is increasingly important. This paper introduces the notion of a governance framework for information security for health providers. It refines the idea of an IT Balanced Scorecard into a scorecard process for use in governing information security for primary care health providers, where IT and security skills may be limited. The approach amends and justifies the four main elements of the scorecard process. The existence of a governance framework specifically tailored for the needs of primary care practice is a critical success factor if such organisations are to move to a robust level of information security. The challenge is twofold. Firstly, measures for governance need to be understandable to the target audience using the framework. Secondly, the number of measures needs to be controllable otherwise the process will become unviable and unused. This research synthesizes existing models and industry standards to formulate a new governance process that meets these two important criteria. The contribution of this research is in the refinement of governance metrics to make them useful to healthcare providers, specifically in relation to IT and new information communication technologies.

Original languageEnglish
Pages62-69
Number of pages8
Publication statusPublished - 1 Dec 2010
Event8th Australian Information Security Management Conference, AISM -
Duration: 30 Nov 2010 → …

Conference

Conference8th Australian Information Security Management Conference, AISM
Period30/11/10 → …

Keywords

  • Framework
  • General practice
  • Governance
  • Health
  • Information security

Fingerprint

Dive into the research topics of 'An information security governance framework for Australian primary care health providers'. Together they form a unique fingerprint.

Cite this