首页    期刊浏览 2024年12月12日 星期四
登录注册

文章基本信息

  • 标题:Assessing staff awareness and effectiveness of educational training on IT security and privacy in a large healthcare organization
  • 作者:Mubashir Aslam Arain ; Mubashir Aslam Arain, Rima Tarraf, Armghan Ahmad ; Rima Tarraf
  • 期刊名称:Journal of Multidisciplinary Healthcare
  • 印刷版ISSN:1178-2390
  • 电子版ISSN:1178-2390
  • 出版年度:2019
  • 卷号:12
  • 页码:73-81
  • DOI:10.2147/JMDH.S183275
  • 语种:English
  • 出版社:Dove Medical Press Ltd
  • 摘要:Background: The increased use of health information systems and information technology (IT) in healthcare heightens the risk of security and privacy breaches. Necessary measures such as effective IT training and education are required to meet the challenges of protecting patient information. Purpose: The objective of the study was to determine the effectiveness of existing educational and awareness modules in delivering the key messages around IT security and privacy. Methods: The study was conducted in a large healthcare organization in Western Canada from September 2016 to March 2017. Using proportionate stratified random sampling, an online survey was distributed to all professional groups including clinical and non-clinical staff. In total, 586 participants responded to questions pertaining to whether or not they were aware of the IT education material, common potential breaches, and knowledge in preventing IT security and privacy breaches. Data were analyzed in SPSS version 19. Results: The study found that most of the participants (80.9%) completed the online IT training. Staff perceived the online training as effective (57.5%). There was a significant positive correlation between staff perception about the effectiveness of IT security educational material and satisfaction with IT security in the organization ( r =0.34, P <0.01). Those who completed the training were 4.2-times (CI=2.0–8.8) more likely to correctly report the action upon receiving spam emails than those who had not completed the training. The most common type of breach stated was not knowing how to encrypt emails when sending emails outside the organization. Only a small proportion of clinical (25.5%) and non-clinical staff (30.4%) reported knowing how to encrypt emails. Also, participants identified various strategies for improving the module content and compliance. Conclusion: Online training provides a basic understanding of IT security and privacy concepts to prevent potential breaches. The training should be an integral part of healthcare staff continuing education to protect patient information.
  • 关键词:IT security modules; privacy in healthcare; healthcare staff and IT breaches; information storage & retrieval; IT security & privacy; computerized medical records system
Loading...
联系我们|关于我们|网站声明
国家哲学社会科学文献中心版权所有