摘要:AbstractInformation security remains to be one of the critical issues facing any organization worldwide including healthcare. The need to protect information as one of the assets in the organization and mitigate the issues is more paramount than before. Typically, management considers information security governance under the jurisdiction of information technology department, segregated from management's main business operation. This paper investigates the current issues related to information security. It further identifies key factors influencing the information security culture in the healthcare environment. A review examining antecedents of information security culture was conducted from secondary data. Subsequently, a conceptual model was proposed taking into consideration factors that influences information security culture. This in-progress study suggests organization in building a comprehensive security culture particularly for healthcare environment.
