Volume 7 Number 4 (Apr. 2012)
Home > Archive > 2012 > Volume 7 Number 4 (Apr. 2012) >
JSW 2012 Vol.7(4): 792-797 ISSN: 1796-217X
doi: 10.4304/jsw.7.4.792-797

Medical Organization Information Security Management Based on ISO27001 Information Security Standard

Kuo-Hsiung Liao and Hao-En Chueh

Information Management Department, Yuanpei University, HsinChu, Taiwan.

Abstract—Most of the information security events in medical organizations are due to improper management. This is a clear indication that the security of information is an issue related to information and communication technology and a management issue as well. In a review of literature, most research on information security has focused on information and communication technology issues, such as network security and access control; rarely addressing issues at the management-level. The main purpose of this study is to construct a mechanism for the management of information with regard to security as it applies to medical organizations. This mechanism is based on the eleven control items and one hundred thirty-three control objectives of the ISO27001 information security management standard. This study analyzes and identifies the most common events related to information security in medical organizations and categorizes these events as highrisk, transferable-risk, and controlled-risk to facilitate the management of such risk.

Index Terms—Medical organizations, Information security, ISO27001, Risk management, Access control

[PDF]

Cite: Kuo-Hsiung Liao and Hao-En Chueh, "Medical Organization Information Security Management Based on ISO27001 Information Security Standard," Journal of Software vol. 7, no. 4, pp. 792-797, 2012.

General Information

  • ISSN: 1796-217X (Online)

  • Abbreviated Title: J. Softw.

  • Frequency:  Quarterly

  • APC: 500USD

  • DOI: 10.17706/JSW

  • Editor-in-Chief: Prof. Antanas Verikas

  • Executive Editor: Ms. Cecilia Xie

  • Abstracting/ Indexing: DBLP, EBSCO,
           CNKIGoogle Scholar, ProQuest,
           INSPEC(IET), ULRICH's Periodicals
           Directory, WorldCat, etc

  • E-mail: jsweditorialoffice@gmail.com

  • Oct 22, 2024 News!

    Vol 19, No 3 has been published with online version   [Click]

  • Jan 04, 2024 News!

    JSW will adopt Article-by-Article Work Flow

  • Apr 01, 2024 News!

    Vol 14, No 4- Vol 14, No 12 has been indexed by IET-(Inspec)     [Click]

  • Apr 01, 2024 News!

    Papers published in JSW Vol 18, No 1- Vol 18, No 6 have been indexed by DBLP   [Click]

  • Jun 12, 2024 News!

    Vol 19, No 2 has been published with online version   [Click]