Readiness of Information Security Management Systems (ISMS) Policy on Hospital Staff Using e-Patuh System

Authors

  • Waidah Ismail Faculty of Science and Technology, Universiti Sains Islam Malaysia (USIM), Negeri Sembilan,Malaysia.
  • Najwa Haayati Mohd Alwi Faculty of Science and Technology, Universiti Sains Islam Malaysia (USIM), Negeri Sembilan,Malaysia.
  • Roesnita Ismail Faculty of Science and Technology, Universiti Sains Islam Malaysia (USIM), Negeri Sembilan,Malaysia.
  • Mahadi Bahari Faculty of Computing, Universiti Teknologi Malaysia (UTM), Johor, Malaysia.
  • Omar Zakaria Pusat Pengajian Siswazah, Universiti Pertahanan Nasional Malaysia (UPNM), Kuala Lumpur, Malaysia.

Keywords:

Data Centre, Hospital Information Security Management Systems, ISO 27001, 2013, Malaysia,

Abstract

ISO 27001:2013 is the best-known standard providing requirements for information security management systems (ISMS). An ISMS is a systematic approach to manage sensitive information through people, processes and IT systems. In a hospital, a patient's individual medical record is highly private and sensitive. This study performed qualitative questionnaire based on the ISO27001:2013 policy. Seven hospitals in Malaysia were involved in this study. This study focus on the Data Center as it contains a high risk server. This study reveals the non-compliance issues among the sampled hospitals in Malaysia. The participation of the hospitals in trainings related to information security awareness and education were still not adequate due to lack of support from the top management. The Malaysian Administrative Modernisation and Management Planning Unit (MAMPU), the Ministry of Health Malaysia and the top management in hospitals in Malaysia play vital roles to educate and ensure the compliance of ISO 27001:2013.

Downloads

Download data is not yet available.

Downloads

Published

2018-02-26

How to Cite

Ismail, W., Mohd Alwi, N. H., Ismail, R., Bahari, M., & Zakaria, O. (2018). Readiness of Information Security Management Systems (ISMS) Policy on Hospital Staff Using e-Patuh System. Journal of Telecommunication, Electronic and Computer Engineering (JTEC), 10(1-11), 47–52. Retrieved from https://jtec.utem.edu.my/jtec/article/view/3848

Most read articles by the same author(s)