Your search keyword '"Catherine Pleteshner"' showing total 2 results

1. Guidelines for computer security in general practice

Author

Peter Schattner, Catherine Pleteshner, Heinz Bhend, and Johan Brouns

Subjects

computer security, general practice, guidelines, Computer applications to medicine. Medical informatics, R858-859.7

Abstract

Background As general practice becomes increasingly computerised, data security becomes increasingly important for both patient health and the efficient operation of the practice. Objective To develop guidelines for computer security in general practice based on a literature review, an analysis of available information on current practice and a series of key stakeholder interviews. While the guideline was produced in the context of Australian general practice, we have developed a template that is also relevant for other countries. Method Current data on computer security measures was sought from Australian divisions of general practice. Semi-structured interviews were conducted with general practitioners (GPs), the medical software industry, senior managers within government responsible for health IT (information technology) initiatives, technical IT experts, divisions of general practice and a member of a health information consumer group. The respondents were asked to assess both the likelihood and the consequences of potential risks in computer security being breached. Results The study suggested that the most important computer security issues in general practice were: the need for a nominated IT security coordinator; having written IT policies, including a practice disaster recovery plan; controlling access to different levels of electronic data; doing and testing backups; protecting against viruses and other malicious codes; installing firewalls; undertaking routine maintenance of hardware and software; and securing electronic communication, for example via encryption. This information led to the production of computer security guidelines, including a one-page summary checklist, which were subsequently distributed to all GPs in Australia. Conclusions This paper maps out a process for developing computer security guidelines for general practice. The specific content will vary in different countries according to their levels of adoption of IT, and cultural, technical and other health service factors. Making these guidelines relevant to local contexts should help maximise their uptake.

Published

2007

2. Guidelines for computer security in general practice

Author

Johan Brouns, Catherine Pleteshner, Peter Schattner, and Heinz Bhend

Subjects

Knowledge management, Standard of Good Practice, Data security, Health Informatics, Computer security, computer.software_genre, lcsh:Computer applications to medicine. Medical informatics, Security information and event management, Interviews as Topic, Health Information Management, Medicine, Humans, guidelines, general practice, Certified Information Security Manager, business.industry, Australia, Information technology, Disaster recovery plan, Information security, Computer Science Applications, lcsh:R858-859.7, Electronic data, business, Family Practice, computer, Information Systems, computer security

Abstract

Background As general practice becomes increasingly computerised, data security becomes increasingly important for both patient health and the efficient operation of the practice. Objective To develop guidelines for computer security in general practice based on a literature review, an analysis of available information on current practice and a series of key stakeholder interviews. While the guideline was produced in the context of Australian general practice, we have developed a template that is also relevant for other countries. Method Current data on computer security measures was sought from Australian divisions of general practice. Semi-structured interviews were conducted with general practitioners (GPs), the medical software industry, senior managers within government responsible for health IT (information technology) initiatives, technical IT experts, divisions of general practice and a member of a health information consumer group. The respondents were asked to assess both the likelihood and the consequences of potential risks in computer security being breached. Results The study suggested that the most important computer security issues in general practice were: the need for a nominated IT security coordinator; having written IT policies, including a practice disaster recovery plan; controlling access to different levels of electronic data; doing and testing backups; protecting against viruses and other malicious codes; installing firewalls; undertaking routine maintenance of hardware and software; and securing electronic communication, for example via encryption. This information led to the production of computer security guidelines, including a one-page summary checklist, which were subsequently distributed to all GPs in Australia. Conclusions This paper maps out a process for developing computer security guidelines for general practice. The specific content will vary in different countries according to their levels of adoption of IT, and cultural, technical and other health service factors. Making these guidelines relevant to local contexts should help maximise their uptake.

Published

2007