{"title":"ISO 27001 Information Security Survey of Medical Service Organizations","authors":"Hung-Hsiou Hsu, Jyun-Rong Shih","doi":"10.3390/engproc2023055019","DOIUrl":null,"url":null,"abstract":": The differences between medical institutions in the security management of information systems were investigated by comparing the differences and the means used by personnel in different units in public and private hospitals. Personnel responsible for information security require the protocol of relevant units to solve information security issues. Based on ISO 27001 as a reference standard, a questionnaire survey was conducted to investigate the need for information security management in medical institutions. The information system security in each unit of medical institutions needs to pursue the goal of more perfection for a fully optimized information system. To help medical institution personnel understand the importance of information security and allow appropriate decision making, the results of this study can be used as a reference.","PeriodicalId":504392,"journal":{"name":"2023 IEEE 5th Eurasia Conference on Biomedical Engineering, Healthcare and Sustainability","volume":"1 1","pages":""},"PeriodicalIF":0.0000,"publicationDate":"2023-11-29","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2023 IEEE 5th Eurasia Conference on Biomedical Engineering, Healthcare and Sustainability","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.3390/engproc2023055019","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 0
Abstract
: The differences between medical institutions in the security management of information systems were investigated by comparing the differences and the means used by personnel in different units in public and private hospitals. Personnel responsible for information security require the protocol of relevant units to solve information security issues. Based on ISO 27001 as a reference standard, a questionnaire survey was conducted to investigate the need for information security management in medical institutions. The information system security in each unit of medical institutions needs to pursue the goal of more perfection for a fully optimized information system. To help medical institution personnel understand the importance of information security and allow appropriate decision making, the results of this study can be used as a reference.
:通过比较公立医院和私立医院不同单位人员在信息系统安全管理方面的差异和使用的手段,研究了医疗机构之间在信息系统安全管理方面的差异。负责信息安全的人员需要相关单位的协议来解决信息安全问题。以 ISO 27001 为参考标准,对医疗机构的信息安全管理需求进行了问卷调查。医疗机构各单位的信息系统安全需要追求更加完善的目标,以全面优化信息系统。为了帮助医疗机构人员了解信息安全的重要性,并做出适当的决策,本研究的结果可作为参考。