Abstract
This paper analyzes the risks of the Internet of Medical Things (IoMT) systems and develops an IT governance framework corresponding to these risks. By following this framework, healthcare organizations will be able to provide patients with access to the latest advances in IoMT technology whilst minimizing patient and organizational risks. The framework ensures that patient safety and privacy are key governance focuses alongside hospital operations. From those, we identified a series of resultant risks which include: authentication, authorization, system availability, management complexities, data integrity, and data movement. Our research generated a framework with five sections: data integrity & movement, management complexity, privacy, authentication & authorization, and availability. These categories then have controls adapted from other IT Governance frameworks, each organized under where they apply best. This new framework provides those in the healthcare industry with an outline for successful implementation and management of IoMT systems in their organization.
Recommended Citation
Roemer, Zachary N.; Sundquist, Emma E.; Sumerauer, Robert C.; and Merhout, Jeffrey W., "IT Governance Framework for the Internet of Medical Things in the Healthcare Industry" (2025). MWAIS 2025 Proceedings. 33.
https://aisel.aisnet.org/mwais2025/33