Information Security Management – Best Practice Guidelines for Managers

2012 ◽  
pp. 21-36
Author(s):  
Werner Wüpper ◽  
Iryna Windhorst
Keyword(s):  
Information Security ◽  
Practice Guidelines ◽  
Best Practice ◽  
Security Management ◽  
Information Security Management ◽  
Best Practice Guidelines

A utilitarian re-examination of enterprise-scale information security management

2018 ◽  
Vol 26 (1) ◽  
pp. 39-57
Author(s):  
Andrew Stewart
Keyword(s):  
Information Security ◽  
Multinational Corporations ◽  
Best Practice ◽  
Management Practices ◽  
Gap Analysis ◽  
Security Management ◽  
Value Added ◽  
Investment Banks ◽  
Information Security Management ◽  
Content Type

Purpose An action is utilitarian when it is both useful and practical. This paper aims to examine a number of traditional information security management practices to ascertain their utility. That analysis is performed according to the particular set of challenges and requirements experienced by very large organizations. Examples of such organizations include multinational corporations, the governments of large nations and global investment banks. Design/methodology/approach The author performs a gap analysis of a number of security management practices. The examination is focused on the question of whether these practices are both useful and practical when used within very large organizations. Findings The author identifies a number of information security management practices that are considered to be “best practice” in the general case but that are suboptimal at the margin represented by very large organizations. A number of alternative management practices are proposed that compensate for the identified weaknesses. Originality/value Quoting from the conclusion of the paper: We have seen in our analysis within this paper that some best practices can experience what economists refer to as diminishing marginal utility. As the target organization drifts from the typical use-case the amount of value-added declines and can potentially enter negative territory. We have also examined the degree of innovation in the practice of security management and the extent to which the literature can support practical, real-world activities. In both the areas, we have identified a number of opportunities to perform further work.

Information Security Culture

2015 ◽  
Vol 5 (2) ◽  
pp. 31-52 ◽  
Author(s):  
Joo S. Lim ◽  
Sean B Maynard ◽  
Atif Ahmad ◽  
Shanton Chang
Keyword(s):  
Information Security ◽  
Best Practice ◽  
Management Practices ◽  
Security Management ◽  
Information Security Management ◽  
Security Culture ◽  
Study Approach ◽  
Unified View ◽  
Multiple Case

There is considerable literature in the area of information security management (ISM). However, from an organizational viewpoint, the collective body of literature does not present a coherent, unified view of recommended security management practices. In particular, despite the existence of ‘best-practice' standards on information security management, organizations have no way of evaluating the reliability or objectivity of the recommended practices as they do not provide any underlying reasoning or justification. This paper is a first step towards the development of rigorous and formal instruments of measurement by which organizations can assess their security management practices. The paper identifies nine security practice constructs from the literature and develops measurement items for organizations to assess the adequacy of their security management practices. The study uses a multiple case study approach followed by interviews with a panel of four security experts to validate and refine these security practice constructs and their associated measures.

scholarly journals Telehealth in Rheumatology: The 2021 Arab League of Rheumatology Best Practice Guidelines

2021 ◽  
Author(s):  
Nelly Ziade ◽  
Ihsane Hmamouchi ◽  
Lina el Kibbi ◽  
Melissa Daou ◽  
Nizar Abdulateef ◽  
...  
Keyword(s):  
Quality Of Care ◽  
Information Security ◽  
Practice Guidelines ◽  
Clinical Judgment ◽  
Best Practice ◽  
Medical Information ◽  
Arab Region ◽  
Best Practice Guidelines ◽  
Arab League

AbstractBackgroundTelehealth use is increasing and will undeniably continue to play a role beyond the COVID-19 era. Best practice guidelines (BPG) for telehealth add credibility, standardize approaches, facilitate reimbursement, and decrease liability.ObjectivesTo develop BPG for the use of Telehealth In Rheumatology in the Arab region, to identify the top barriers and facilitators of telehealth in the Arab region, and to provide rheumatologists with a practical toolkit for the implementation of telehealth.MethodsGuidelines were drafted by a core steering committee from the Arab League of Associations for Rheumatology (ArLAR) after performing a literature search. A multidisciplinary task force (TF), including 18 rheumatologists, 2 patients, and 2 regulators from 15 Arab countries, assessed the BPG using 3 rounds of anonymous online voting by modified Delphi process. The voting on barriers and facilitators was performed through one voting round. The toolkit was developed based on available literature and discussions during the Delphi rounds.ResultsFour General Principles and twelve Statements were formulated. All statements reached >80% consensus. A teleconsultation was specifically defined for the purpose of these guidelines. The concept of choice in telehealth was highlighted, emphasizing patient confidentiality, medical information security, rheumatologist’s clinical judgment, and local jurisdictional regulations. The top barrier for telehealth was the concern about the quality of care. The toolkit emphasized technical aspects of teleconsultation and proposed a triage system.ConclusionsThe ArLAR BPG provides rheumatologists with a series of strategies about the most reliable, productive, and rational approaches to apply telehealth.Article SummaryStrengths and limitations of this studyBest practice guidelines (BPG) the use of Telehealth In Rheumatology in the Arab region were developed herein under the umbrella of the Arab League of Associations for Rheumatology (ArLAR)A teleconsultation was specifically defined for the purpose of these guidelinesThe concept of choice in telehealth was highlighted, emphasizing patient confidentiality, medical information security, rheumatologist’s clinical judgment, and local jurisdictional regulationsThe top barrier for telehealth was the concern about the quality of careThe ArLAR BPG provides rheumatologists with a series of strategies about the most reliable, productive, and rational approaches to apply telehealth in the rheumatology clinic

Opioid crisis in primary care? An audit of high-dose opioid prescribing at Bangholm GP Practice

2020 ◽  
Vol 70 (suppl 1) ◽  
pp. bjgp20X711581
Author(s):  
Charlotte Greene ◽  
Alice Pearson
Keyword(s):  
Chronic Pain ◽  
Back Pain ◽  
Practice Guidelines ◽  
Best Practice ◽  
Evidence Base ◽  
High Dose ◽  
Opioid Prescription ◽  
Opioid Prescribing ◽  
Best Practice Guidelines

BackgroundOpioids are effective analgesics for acute and palliative pain, but there is no evidence base for long-term pain relief. They also carry considerable risks such as overdose and dependence. Despite this, they are increasingly prescribed for chronic pain. In the UK, opioid prescribing more than doubled between 1998 and 2018.AimAn audit at Bangholm GP Practice to understand the scale of high-strength opioid prescribing. The aim of the audit was to find out if indications, length of prescription, discussion, and documentation at initial consultation and review process were consistent with best-practice guidelines.MethodA search on Scottish Therapeutics Utility for patients prescribed an average daily dose of opioid equivalent ≥50 mg morphine between 1 July 2019 and 1 October 2019, excluding methadone, cancer pain, or palliative prescriptions. The Faculty of Pain Medicine’s best-practice guidelines were used.ResultsDemographics: 60 patients (37 females), average age 62, 28% registered with repeat opioid prescription, 38% comorbid depression. Length of prescription: average 6 years, 57% >5 years, 22% >10 years. Opioid: 52% tramadol, 23% on two opioids. Indications: back pain (42%), osteoarthritis (12%), fibromyalgia (10%). Initial consultation: 7% agreed outcomes, 35% follow-up documented. Review: 56% 4-week, 70% past year.ConclusionOpioid prescribing guidelines are not followed. The significant issues are: long-term prescriptions for chronic pain, especially back pain; new patients registering with repeat prescriptions; and no outcomes of treatment agreed, a crucial message is the goal is pain management rather than relief. Changes have been introduced at the practice: a patient information sheet, compulsory 1-month review for new patients on opioids, and in-surgery pain referrals.

Sign in / Sign up

Export Citation Format

Share Document