TY - JOUR
T1 - Information security climate and the assessment of information security risk among healthcare employees
AU - Kessler, Stacey
AU - Pindek, Shani
AU - Kleinman, Gary
AU - Andel, Stephanie A.
AU - Spector, Paul E.
N1 - Publisher Copyright:
© The Author(s) 2019.
PY - 2020/3/1
Y1 - 2020/3/1
N2 - Since 2009, over 176 million patients in the United States have been adversely impacted by data breaches affecting Health Insurance Portability and Accountability Act–covered institutions. While the popular press often attributes data breaches to external hackers, most breaches are the result of employee carelessness and/or failure to comply with information security policies and procedures. To change employee behavior, we borrow from the organizational climate literature and introduce the Information Security Climate Index, developed and validated using two pilot samples. In this study, four categories of healthcare professionals (certified nursing assistants, dentists, pharmacists, and physician assistants) were surveyed. Likert-type items were used to assess the Information Security Climate Index, information security motivation, and information security behaviors. Study results indicated that the Information Security Climate Index was related to better employee information security motivation and information security behaviors. In addition, there were observed differences between occupational groups with pharmacists reporting a more favorable climate and behaviors than physician assistants.
AB - Since 2009, over 176 million patients in the United States have been adversely impacted by data breaches affecting Health Insurance Portability and Accountability Act–covered institutions. While the popular press often attributes data breaches to external hackers, most breaches are the result of employee carelessness and/or failure to comply with information security policies and procedures. To change employee behavior, we borrow from the organizational climate literature and introduce the Information Security Climate Index, developed and validated using two pilot samples. In this study, four categories of healthcare professionals (certified nursing assistants, dentists, pharmacists, and physician assistants) were surveyed. Likert-type items were used to assess the Information Security Climate Index, information security motivation, and information security behaviors. Study results indicated that the Information Security Climate Index was related to better employee information security motivation and information security behaviors. In addition, there were observed differences between occupational groups with pharmacists reporting a more favorable climate and behaviors than physician assistants.
KW - cybersecurity
KW - electronic health records
KW - information protection
KW - information security
KW - organizational climate
UR - http://www.scopus.com/inward/record.url?scp=85063038849&partnerID=8YFLogxK
U2 - 10.1177/1460458219832048
DO - 10.1177/1460458219832048
M3 - Article
C2 - 30866704
AN - SCOPUS:85063038849
SN - 1460-4582
VL - 26
SP - 461
EP - 473
JO - Health Informatics Journal
JF - Health Informatics Journal
IS - 1
ER -