期刊名称:Journal of Theoretical and Applied Information Technology
印刷版ISSN:1992-8645
电子版ISSN:1817-3195
出版年度:2016
卷号:84
期号:1
出版社:Journal of Theoretical and Applied
摘要:Objective of the research: Risk management in the IT world is quite a complex, multi faced activity, with a lot of relations with other complex activities (Rainer et al, 1991; Bahli and Rivard, 2005). The purpose of the study is to find out the major factors impacting medical data security in the Indian organizations. Current state of Research Area: Information security awareness is considered very vital because of the fact that security techniques as well as procedures are vulnerable to misuse and non-usage by the end users (see Ceraolo, 1996; and Straub, 1990). Medical data too is a crucial element of the overall information system of an organization. Any breach in the security of medical data may have detrimental effects on the organizations. Straub and Welke (1998) have argued that security breaches are far more regular and destructive than it is usually though to be. This is mainly because of the fact that the managers are generally not concerned with issues related to information security and unaware of the nature of risk. Thus there exists an immediate need to secure medical data and ensure its reliability and availability at the right time and to the right person. Methodology: For the quantitative study a survey has been conducted with the help of a close ended questionnaire. The responses were collected from employees of companies operating in the Healthcare, Telecom industry, and IT industry in India. The questionnaire was circulated in the physical mode. Convenience sampling was deployed in order to select the respondents. The validity of the constructs was assessed by means of factor analysis. Descriptive as well as inferential statistics like t-test, ANOVA have been used for obtaining the desired results. Conclusion : The study also highlighted that there are multiple constructs that should be considered while measuring the overall information security within an organization. These constructs or factors should be evaluated both individually as well as collectively in order to make the information secure and reliable. Limitations: One of the biggest limitations of the current study is that it is confined to only three sectors namely Healthcare, Telecom & IT. Further we have studied only one country i.e. India. Scope for further Research: medical data management practices in advanced as well as in emerging economies differ a lot. Such differences can be studied to provide a comprehensive framework of medical data management.
关键词:Medical Data; Risk Analysis; Factor Analysis; Information Security.
