Model-Based Risk Assessment to Improve Enterprise Security
EDOC '02 Proceedings of the 6th International Enterprise Distributed Object Computing Conference
Business Intelligence in Healthcare Organizations
HICSS '02 Proceedings of the 35th Annual Hawaii International Conference on System Sciences (HICSS'02)-Volume 6 - Volume 6
The HIPAA-potamus in health care data security
Communications of the ACM - Has the Internet become indispensable?
Medical data security: Are you informed or afraid?
International Journal of Information and Computer Security
In defense of the realm: understanding the threats to information security
International Journal of Information Management: The Journal for Information Professionals
The positive outcomes of information security awareness training in companies - A case study
Information Security Tech. Report
2009 Information Security Curriculum Development Conference
Preemptive mechanism to prevent health data privacy leakage
Proceedings of the International Conference on Management of Emergent Digital EcoSystems
Information systems user security: A structured model of the knowing-doing gap
Computers in Human Behavior
| Hi-index | 0.00 |
Information security is important in any organisation and particularly where personal and medical information is routinely recorded. Further, where the organisational culture revolves around trust, as in the medical environment, insider threats, both malicious and non-malicious, are difficult to manage. International research has shown that changing security culture and increasing awareness is necessary as technical resolutions are not sufficient to control insider threats. This area of information security is both important and topical in view of the recently publicised breaches of patient health information. Ensuring that all staff assumes responsibility for information security, particularly as part of an information security governance framework, is one practical solution to the problem of insider threats.