Information security and privacy in hospitals: a literature mapping and review of research gaps. (2nd January 2023)
- Record Type:
- Journal Article
- Title:
- Information security and privacy in hospitals: a literature mapping and review of research gaps. (2nd January 2023)
- Main Title:
- Information security and privacy in hospitals: a literature mapping and review of research gaps
- Authors:
- Ahouanmenou, Steve
Van Looy, Amy
Poels, Geert - Abstract:
- ABSTRACT: Information security and privacy are matters of concern in every industry. The healthcare sector has lagged in terms of implementing cybersecurity measures. Therefore, hospitals are more exposed to cyber events due to the criticality of patient data. Currently, little is known about state-of-the-art research on information security and privacy in hospitals. The purpose of this study is to report the outcome of a systematic literature review on research about the application of information security and privacy in hospitals. A systematic literature review following the PRISMA methodology was conducted. To reference our sample according to cybersecurity domains, we benchmarked each article against two cybersecurity frameworks: ISO 27001 Annex A and the NIST framework core. Limited articles in our papers referred to the policies and compliance sections of ISO 27001. In addition, most of our sample is classified by the NIST function "Protect, " meaning activities related to identity management, access control and data security. Furthermore, we have identified key domains where research in security and privacy are critical, such as big data, IOT, cloud computing, standards and regulations. The results indicate that although cybersecurity is a growing concern in hospitals, research is still weak in some areas. Considering the recrudescence of cyber-attacks in the healthcare sector, we call for more research in hospitals in managerial and non-technical domains ofABSTRACT: Information security and privacy are matters of concern in every industry. The healthcare sector has lagged in terms of implementing cybersecurity measures. Therefore, hospitals are more exposed to cyber events due to the criticality of patient data. Currently, little is known about state-of-the-art research on information security and privacy in hospitals. The purpose of this study is to report the outcome of a systematic literature review on research about the application of information security and privacy in hospitals. A systematic literature review following the PRISMA methodology was conducted. To reference our sample according to cybersecurity domains, we benchmarked each article against two cybersecurity frameworks: ISO 27001 Annex A and the NIST framework core. Limited articles in our papers referred to the policies and compliance sections of ISO 27001. In addition, most of our sample is classified by the NIST function "Protect, " meaning activities related to identity management, access control and data security. Furthermore, we have identified key domains where research in security and privacy are critical, such as big data, IOT, cloud computing, standards and regulations. The results indicate that although cybersecurity is a growing concern in hospitals, research is still weak in some areas. Considering the recrudescence of cyber-attacks in the healthcare sector, we call for more research in hospitals in managerial and non-technical domains of information security and privacy that are uncovered by our analysis. … (more)
- Is Part Of:
- Informatics for health & social care. Volume 48:Number 1(2023)
- Journal:
- Informatics for health & social care
- Issue:
- Volume 48:Number 1(2023)
- Issue Display:
- Volume 48, Issue 1 (2023)
- Year:
- 2023
- Volume:
- 48
- Issue:
- 1
- Issue Sort Value:
- 2023-0048-0001-0000
- Page Start:
- 30
- Page End:
- 46
- Publication Date:
- 2023-01-02
- Subjects:
- Healthcare -- cybersecurity -- privacy -- SLR -- research agenda
Medicine -- Information services -- Periodicals
Medical informatics -- Periodicals
Medicine -- Data processing -- Periodicals
025.0661 - Journal URLs:
- http://informahealthcare.com/journal/mif ↗
http://www.informaworld.com/smpp/title~db=all~content=t713736879~tab=issueslist ↗
http://informahealthcare.com ↗ - DOI:
- 10.1080/17538157.2022.2049274 ↗
- Languages:
- English
- ISSNs:
- 1753-8157
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - 4481.299840
British Library DSC - BLDSS-3PM
British Library HMNTS - ELD Digital store - Ingest File:
- 25986.xml