Security Assurance Modelling of Security Incident in Healthcare using the Generic Security Template (GST)

Mapping Intimacies ◽

10.21203/rs.3.rs-21578/v1 ◽

2020 ◽

Author(s):

Ying He ◽

Cunjin Luo

Keyword(s):

Healthcare Services ◽

Healthcare Organization ◽

Lessons Learned ◽

Security Requirements ◽

Healthcare Sector ◽

Healthcare Organizations ◽

Security Incident ◽

Security Assurance ◽

Security Incidents

Abstract Background: The recent industry reports show that the number of security incidents in healthcare sector is still increasing, especially the high severity incident, such as data leakage incident and ransomware, which can lead to significant impact on healthcare services. It is imperative for the organizations to learn lessons from those incidents. Traditional ways to disseminate lessons learned are based on text approach, the linear format of which can obscure relationships among concepts and discourage readers from integrating information across ideas. Graphical diagrams can serve this purpose, as it can communicate both individual elements of information and relationships between them. Methods: The Generic Security Template (GST) has been proposed to support the exchange of lessons learned from security incidents. It utilises graphical notations to communicate both individual elements of information and relationships between them. This paper conducts a case study by adopting the GST to capture and structure the incident information of a data leakage incident in a UK healthcare organization in order to facilitate incident exchange. Results: The results show that, the GST was able to visualise and depict the key elements, including lessons learned, the associated security requirements and organizational contextual information identified from the selected data leakage incident case study from NHS. GST provides a unified way to communicate incident information. Conclusions: This research has significance for the healthcare organizations to improve their incident learning practices. It fosters an environment where different stakeholders can speak the same language while exchanging the lessons learned from the security incidents. Future work will consider apply the GST to analyse other complex security incidents such as the advanced persistent threats (APTs) in healthcare organizations and extend the use of the GST in other industries. Keywords: Security Assurance Modelling, Generic Security Template (GST), Security Incident, Healthcare Organization.

Download Full-text

Survey of Cloud Computing in Healthcare Sector

International Journal of Advanced Research in Computer Science and Software Engineering ◽

10.23956/ijarcsse/v7i7/0222 ◽

2017 ◽

Vol 7 (7) ◽

pp. 337

Author(s):

S. Karthiga Devi ◽

B. Arputhamary

Keyword(s):

Cloud Computing ◽

Healthcare Providers ◽

High Volume ◽

Healthcare Services ◽

Healthcare Sector ◽

Cloud Infrastructure ◽

Healthcare Organizations ◽

Privacy And Security ◽

Healthcare Data ◽

Number Of Patients

Today the volume of healthcare data generated increased rapidly because of the number of patients in each hospital increasing. These data are most important for decision making and delivering the best care for patients. Healthcare providers are now faced with collecting, managing, storing and securing huge amounts of sensitive protected health information. As a result, an increasing number of healthcare organizations are turning to cloud based services. Cloud computing offers a viable, secure alternative to premise based healthcare solutions. The infrastructure of Cloud is characterized by a high volume storage and a high throughput. The privacy and security are the two most important concerns in cloud-based healthcare services. Healthcare organization should have electronic medical records in order to use the cloud infrastructure. This paper surveys the challenges of cloud in healthcare and benefits of cloud techniques in health care industries.

Download Full-text

Machine Learning and LPWAN Based Internet of Things Applications in Healthcare Sector during COVID-19 Pandemic

Electronics ◽

10.3390/electronics10141615 ◽

2021 ◽

Vol 10 (14) ◽

pp. 1615

Author(s):

Zeeshan Ali Khan ◽

Ubaid Abbasi ◽

Sung Won Kim

Keyword(s):

Machine Learning ◽

Internet Of Things ◽

Healthcare Services ◽

Healthcare Sector ◽

K Nearest Neighbors ◽

Iot Applications ◽

Processing Resources ◽

Multiple Services ◽

Applications Of Machine Learning

Low power wide area networks (LPWAN) are comprised of small devices having restricted processing resources and limited energy budget. These devices are connected with each other using communication protocols. Considering their available resources, these devices can be used in a number of different Internet of Things (IoT) applications. Another interesting paradigm is machine learning, which can also be integrated with LPWAN technology to embed intelligence into these IoT applications. These machine learning-based applications combine intelligence with LPWAN and prove to be a useful tool. One such IoT application is in the medical field, where they can be used to provide multiple services. In the scenario of the COVID-19 pandemic, the importance of LPWAN-based medical services has gained particular attention. This article describes various COVID-19-related healthcare services, using the the applications of machine learning and LPWAN in improving the medical domain during the current COVID-19 pandemic. We validate our idea with the help of a case study that describes a way to reduce the spread of any pandemic using LPWAN technology and machine learning. The case study compares k-Nearest Neighbors (KNN) and trust-based algorithms for mitigating the flow of virus spread. The simulation results show the effectiveness of KNN for curtailing the COVID-19 spread.

Download Full-text

Performance measurement design: a contingency perspective from the Italian regional healthcare services

Journal of Economic and Administrative Sciences ◽

10.1108/jeas-06-2018-0076 ◽

2019 ◽

Vol 35 (1) ◽

pp. 16-27 ◽

Cited By ~ 1

Author(s):

Rosanna Spanò ◽

Mariavittoria Cicellin ◽

Adriana Scuotto

Keyword(s):

Performance Management ◽

Healthcare Services ◽

Healthcare Sector ◽

Healthcare Organizations ◽

Content Type ◽

Measurement Design ◽

Design Characteristics ◽

Contingent Approach ◽

Assessment Procedures ◽

Regional Health Systems

Purpose In the last few decades, the effectiveness of the evaluation of human resources and their performances has become a crucial theme in the debates of the public sector. The purpose of this paper is to analyze key design characteristics of performance management system (PMS) that may be effectively adopted and deployed by management to enable the assessment for a health system improvement. Design/methodology/approach This paper falls under the field of studies that focuses on the design and implementation of PMS in the healthcare sector. This research adopted a qualitative approach across the case study method to understand the role of different contextual factors and their impact upon the design of PMS. Mainly drawing on previous studies on the Italian regional health systems, a target region has been selected for these purposes. Findings As a result, the new PMS was effectively working and was structured with a balanced focus on the region and the single healthcare organizations. The need for improving the information systems within the healthcare organizations was strongly emphasized. The crucial element of the new PMS was the transparency about the assessment procedures. Originality/value This paper contributes to the debate on factors that can influence the design of PMS in healthcare. Relying on a contingent approach, the authors put forward the need of a more comprehensive and integrated frameworks encompassing organic conception of PMSs, as well as of the interdependencies among their components.

Download Full-text

Supply Chain Thinking in Healthcare: Lessons and Outlooks

Manufacturing & Service Operations Management ◽

10.1287/msom.2020.0920 ◽

2020 ◽

Author(s):

Lidia Betcheva ◽

Feryal Erhun ◽

Houyuan Jiang

Keyword(s):

Supply Chain ◽

Supply Chain Management ◽

Supply Chains ◽

Healthcare Delivery ◽

Healthcare Services ◽

Lessons Learned ◽

Problem Definition ◽

Healthcare Organizations ◽

Chain Management ◽

Managerial Implications

Problem definition: The lessons learned over decades of supply chain management provide an opportunity for stakeholders in complex systems, such as healthcare, to understand, evaluate, and improve their complicated and often inefficient ecosystems. Academic/practical relevance: The complexity in managing healthcare supply chains offers opportunities for important and impactful research avenues in key supply chain management areas such as coordination and integration (e.g., new care models), mass customization (e.g., the rise in precision medicine), and incentives (e.g., emerging reimbursement schemes), which might, in turn, provide insights relevant to traditional supply chains. We also put forward new perspectives for practice and possible research directions for the supply chain management community. Methodology: We provide a primer on supply chain thinking in healthcare, with a focus on healthcare delivery, by following a framework that is customer focused, systems based, and strategically orientated and that simultaneously considers clinical, operational, and financial dimensions. Our goal is to offer an understanding of how concepts and strategies in supply chain management can be applied and tailored to healthcare by considering the sector’s unique challenges and opportunities. Results: After identifying key healthcare stakeholders and their interactions, we discuss the main challenges facing healthcare services from a supply chain perspective and provide examples of how various supply chain strategies are being and can be used in healthcare. Managerial implications: By using supply chain thinking, healthcare organizations can decrease costs and improve the quality of care by uncovering, quantifying, and addressing inefficiencies.

Download Full-text

Transformation to self-managing teams: lessons learned

Strategic HR Review ◽

10.1108/shr-10-2017-0072 ◽

2018 ◽

Vol 17 (2) ◽

pp. 81-84 ◽

Cited By ~ 1

Author(s):

Maarten Renkema ◽

Tanya Bondarouk ◽

Anna Bos-Nehles

Keyword(s):

Design Methodology ◽

Systematic Approach ◽

Transformation Process ◽

Healthcare Organization ◽

Lessons Learned ◽

Self Management ◽

Content Type ◽

Management Board ◽

Stakeholder Groups

Purpose Although self-management is not a new phenomenon, there is a lack of understanding about how to transform organizations towards self-managing teams (SMTs). The purpose of this paper is to propose a guiding framework for how the empowerment process can be managed. Design/methodology/approach The paper sets out 12 guidelines on how to address the transition towards SMTs based on a case study at a large Dutch healthcare organization. The lessons are drawn from observations, documents and more than 55 interviews with key informants. Findings This paper provides a holistic overview of lessons learned from the transformation process towards SMTs. The 12 recommendations are targeted at four stakeholder groups, namely, the management/board, HRM department, coach-managers and members of the SMTs. Originality/value The originality lies in the systematic approach including lessons learned for all levels of the organization.

Download Full-text

Managing ICT in Healthcare Organization

Handbook of Research on Advances in Health Informatics and Electronic Healthcare Applications ◽

10.4018/978-1-60566-030-1.ch010 ◽

2010 ◽

pp. 153-168 ◽

Cited By ~ 5

Author(s):

Nasriah Zakaria ◽

Shafiz Affendi ◽

Norhayati Zakaria

Keyword(s):

Lessons Learned ◽

Healthcare Organizations ◽

User Training ◽

Ict Implementation ◽

Initial Stage ◽

Ict Adoption ◽

It Department ◽

Ict Infrastructure ◽

Medical Teams

The objective of this chapter is to illustrate a case study of a medical research institute in Malaysia in order to discuss issues pertaining to ICT adoption in healthcare organizations, in particular exploring the culture, challenges, and issues of ICT adoption among medical teams, patients, etc. In this chapter, we examine the question of ‘What are the challenges of implementing ICT in healthcare organizations?’ Some of the lessons learned from the case study were: ICT was successfully adopted and implemented based on several factors such as supportive organizational culture, competent IT workers, committed IT department and heavy investment on ICT infrastructure. Yet challenges also arise which hinges upon factors like initial deployment of outside IT resources or expertise for ICT implementation, lack of user training and continuous communication between involved parties in the initial stage.

Download Full-text

Application of Lean Six Sigma in conservative dentistry: an action research at an Indian dental college

The TQM Journal ◽

10.1108/tqm-03-2021-0078 ◽

2021 ◽

Vol ahead-of-print (ahead-of-print) ◽

Author(s):

Ajay Noronha ◽

Shreeranga Bhat ◽

E.V. Gijo ◽

Jiju Antony ◽

Suma Bhat

Keyword(s):

Action Research ◽

Six Sigma ◽

Single Case ◽

Lean Six Sigma ◽

Lessons Learned ◽

Healthcare Sector ◽

Content Type ◽

Conservative Dentistry ◽

Tools And Techniques

PurposeThe article evaluates the obstacles, lessons learned and managerial implications of deploying Lean Six Sigma (LSS) in a dental college hospital in India.Design/methodology/approachThe work adopts the action research (AR) methodology to establish a case study, which is carried out using the LSS define–measure–analyze–improve–control (DAMIC) approach in a dental college. It uses LSS tools to enhance the productivity and performance of the Conservative Dentistry Department of a dental college and to unravel the obstacles and success factors in applying it to the education and healthcare sector together.FindingsThe root cause for high turn-around time (TAT) is ascertained using LSS tools and techniques. The effective deployment of the solutions to the root causes of variation assists the dental college to reduce the TAT of the Conservative Dentistry process from an average of 63.9 min–36.5 min (i.e. 42.9% improvement), and the process Standard Deviation (SD) was reduced from 2.63 to 2 min. This, in turn, raises the sigma level from 0.48 to 3.23, a noteworthy successful story for this dental college.Research limitations/implicationsWhile the results and recommendations of this research are focused on a single case study, it is to be noted that the case study is carried out with new users of LSS tools and techniques, especially with the assistance of interns. This indicates the applicability of LSS in dental colleges; thus, the adopted modality can be further refined to fit India's education and hospital sector together.Originality/valueThis article explains the implementation of LSS from an aspiring user viewpoint to assist dental colleges and policymakers in improving competitiveness. In addition, the medical education sector can introduce an LSS course in the existing programme to leverage the potential of this methodology to bring synergy and collaborative research between data-based thinking and the medical field based on the findings of this study. The most important contribution of this article is the illustration of the design of experiments (DOE) in the dental college process.

Download Full-text

Challenges of information security incident learning: An industrial case study in a Chinese healthcare organization

Informatics for Health and Social Care ◽

10.1080/17538157.2016.1255629 ◽

2017 ◽

Vol 42 (4) ◽

pp. 393-408 ◽

Cited By ~ 9

Author(s):

Ying He ◽

Chris Johnson

Keyword(s):

Information Security ◽

Healthcare Organization ◽

Industrial Case Study ◽

Security Incident ◽

Incident Learning

Download Full-text

Managing ICT in Healthcare Organization

Health Information Systems ◽

10.4018/978-1-60566-988-5.ch086 ◽

2011 ◽

pp. 1357-1372 ◽

Cited By ~ 2

Author(s):

Nasriah Zakaria ◽

Shafiz Affendi ◽

Norhayati Zakaria

Keyword(s):

Lessons Learned ◽

Healthcare Organizations ◽

User Training ◽

Ict Implementation ◽

Initial Stage ◽

Ict Adoption ◽

It Department ◽

Ict Infrastructure ◽

Medical Teams

Download Full-text

Impact of coupled open innovation on company business models: A case study of demand-driven co-creation

Journal of Innovation Management ◽

10.24840/2183-0606_008.003_0006 ◽

2020 ◽

Vol 8 (3) ◽

pp. 75-108

Author(s):

Heini Malm ◽

Minna Pikkarainen ◽

Elina Hyrkäs

Keyword(s):

Open Innovation ◽

Business Models ◽

Improve Patient Care ◽

Healthcare Sector ◽

Longitudinal Case Study ◽

Healthcare Organizations ◽

Knowledge Based ◽

Knowledge Based Economy ◽

The Impact

Research on open innovation refers to a model in which innovation is driven by the needs of the customer. In the healthcare sector, healthcare organizations are often the core customers for companies that want to use e-health solutions to improve patient care and cost efficiency. We examined the impact of coupled open innovation on companies’ business models. The co-creation between network actors was done in a demand-driven manner based on the needs of healthcare professionals. We present the findings of a longitudinal case study in an international setting. The research generated a new demand-driven coupled open innovation framework that supports companies in the challenging task of exploring economically viable business opportunities. Our paper contributes to the knowledge management and open business model literatures by providing empirical knowledge on the knowledge absorption and impact of coupled open innovation in the company business models in the knowledge-based economy.

Download Full-text