Date of Conferral
2022
Degree
Doctor of Information Technology (D.I.T.)
School
Information Systems and Technology
Advisor
Jon W. McKeeby
Abstract
AbstractRecent cyberattacks in hospitals show the urgency of the need to enhance secure information technology (IT) infrastructure. Hospitals are statistically more at cyber risk than all the multiple industries against ransomware, malware, hacking and internal threats. Guided by routine activity theory, the purpose of this exploratory multiple case study was to explore strategies utilized by hospitals' IT security managers to reduce cybersecurity breaches associated with sensitive data. The participants were nine IT security managers from hospitals in the eastern United States. Data were collected via semistructured interviews and supporting documentation from the consenting participants and hospitals' websites. Through thematic analysis, seven core themes emerged: (a) ensure adherence to top cybersecurity framework, (b) implement adequate and effective cybersecurity controls, (c) conduct a regular cybersecurity risk assessment, (d) maintain an air gap technique backup, (e) cultivate security awareness culture, (f) encrypt all data at rest and in transit, and (g) keep abreast with cybersecurity news and risks. A key recommendation for IT security managers is to utilize the maintenance of regularly updated backup as a crucial tactic for reducing exposure to cybercriminals. The implication for positive social change includes the potential to increase patients' trust and reduce the threat to human life.
Recommended Citation
Pottinger, Donovan M. A., "Strategies for the Reduction of Cybersecurity Breaches in Hospitals" (2022). Walden Dissertations and Doctoral Studies. 13695.
https://scholarworks.waldenu.edu/dissertations/13695
