A Paradigm for Efficient Security of Information System Control in Healthcare Organizations in Nigeria

Attahiru Saminu¹

Section:Research Paper, Product Type: Journal-Paper
Vol.9 , Issue.5 , pp.14-21, May-2023

Online published on May 31, 2023

Copyright © Attahiru Saminu . This is an open access article distributed under the Creative Commons Attribution License, which permits unrestricted use, distribution, and reproduction in any medium, provided the original work is properly cited.
 

View this paper at   Google Scholar | DPI Digital Library

XML View     PDF Download

How to Cite this Paper

Abstract :
Organizations in the healthcare industry place a high priority on information security. In the healthcare industry, the Electronic Health Record (EHR) and patient data are regarded as particularly sensitive information. In order to safeguard healthcare records from potential security risks in healthcare organizations, this study examined the present countermeasures in use and the ways in which employers disseminated information regarding the availability of information security countermeasures. This study has chosen to use a qualitative research methodology. The adage that "the nature of the research problem ought to be determined by the choice of the research method" seems deceptively straightforward. The population of the study consists of 564 workers at the Katsina General Hospital. The researchers have created an interview guide that covers eleven pertinent questions for four categories of staff, including 5 IT personnel, 15 doctors, 15 nurses, and 5 management staff/administrators in all three general hospitals located in the study areas, in order to meet the requirements for responding to the research questions. A conceptual framework has been developed to facilitate the investigation of information security countermeasures in healthcare companies in relation to knowledge sharing among employers. The results of the case study showed that employers only partially implement deterrent, organizational, and preventative countermeasures and that there is a lack of knowledge sharing about the existence of information security countermeasures among employers. Employers` unwillingness to share their information has been attributed to a number of issues, including behavior, a lack of security awareness, personality differences, top management commitment, and a lack of knowledge sharing among employers.

Key-Words / Index Term :
Electronic Healthcare Records, Security and Management, Countermeasures, Knowledge Sharing

References :
[1] Al-Salihy Wafaa “Effective of Information Systems Security in IT Organizations in Malaysia”. In the Proceedings of the 9th Asia Pasific Conference on Communications, APCC, 5. 2003
[2] Pascale Carayon, Paul Smith, Ann Schoofs Hundt, Vipat Kuruchittham and and Qian Li “Implementation of an electronic health records system in a small clinic: the viewpoint of clinic staff” Behaviour & Information Technology, Vol.28, No.1, pp 5–20, 2009
[3] Eloff Jan, Mm Eloff “Information Security Management - A New Paradigm” Conference: Proceedings of SAICSIT, Sourth Africa pp.130 –136, 2003
[4] Harold Tipton, Micki Krause “Information Security Management Handbook” Auerbach Publications Taylor & Francis Group, United States of America, pp.18-20, 2008
[5] Kabay M. E.” Using Social Psychology to Implement Security Policies” John Wiley & Sons publishers, USA, pp.35-37, 2002
[6] Lupiana Dennis “Development of a Framework to Leverage Knowledge Management Systems to Improve Security Awareness” A dissertation submitted in partial fulfilment of the requirements of Dublin Institute of Technology for the degree of M.Sc. in Computing (Knowledge Management), Technological University Dublin ARROW@TU Dublin publishers. Pp.35-37, 2008
[7] Mohd Khanapi Abd Ghani, Salama Mostafa, Aida Mustapha, Hannani Aman, Mazin Abed Mohamed, Mustafa Musa Jaber “Investigating Telemedicine Approaches: a 10-Country Comparison” International Journal of Engineering & Technology Vol.75, Issue.8, 2012
[8] Mount Christopher, Christopher Kelman, Leonard Smith, Robert Douglas “An integrated electronic health record and information system for Australia” The Medical journal of Australia, Vol.172, pp.25-27, 2000
[9] N. Booth, Sharing patient information electronically througjh the NHS. Britsh Medical jounal, 327(7407:114-115. 2003
[10]N. Hassan et al, A Conceptual Model for Knowledge Sharing Towads Information Security Culture in Healthcare Organization. IEEE 3rd International conference on research and innovation systems (ICRIIS`13), 5. 2013
[11]N. Lupiana, “ Development of A Framework To Leverage Knowledge Management Systems to Improve Security Awareness”. Dublin: Dublin Institute of Technology. 2008
[12] T. Lippeveld, Routine Health Information Systems: The Glue of a Unified Health System. Keynote Address at the Workshop on Issues and Innovation in Routine Health Information in Developing Countries, Potomac 2016
[13]Thompson et al., The Decade of Health Information Technology: Delivering Consumer-centric and information-rich Health care Framework for Strategic Action. 2004
[14] Velibor BOŽI? “Managing information security in healthcare.” Smart Cities and Regional Development Journal , vol.4. Issue.12. pp.63-83, 2020
[15] Wise, et al., "Informalion systems failure analysis,". IEEE journal, 318-319.www.edu.plymouth.ac.uk /.../qualitative%20methods%202/ qualrshm.htm. (n.d.) retrieved on 2nd Febuary, 2019.