Abstract
We investigated the effectiveness of a security risk management (SRM) program at a large healthcare institution. Using a survey, we explored how nine critical success factors (CSFs): executive management support (EMS), organizational maturity (OM), open communication (OC), risk management stakeholders (RMS), team member empowerment (TME), holistic view for an organization (HVO), security maintenance (SM), corporate security strategy (CSS), and human resource development (HRD) impacted SRM effectiveness. Implementing a mixed research method, we found that employees had a positive perception of SRM toward all CSFs but one―team member empowerment (TME). Both medical professionals and staff had a negative perception of how TME was implemented at the institution.
DOI
10.17705/1CAIS.03437
Recommended Citation
Zafar, H., Ko, M. S., & Clark, J. G. (2014). Security Risk Management in Healthcare: A Case Study. Communications of the Association for Information Systems, 34, pp-pp. https://doi.org/10.17705/1CAIS.03437
When commenting on articles, please be friendly, welcoming, respectful and abide by the AIS eLibrary Discussion Thread Code of Conduct posted here.
