Date of Conferral

4-2-2025

Date of Award

April 2025

Degree

Doctor of Information Technology (D.I.T.)

School

Information Systems and Technology

Advisor

Patrick Mensah

Abstract

Data breaches are a critical concern in healthcare settings. Protecting patient information is a major priority for healthcare providers, information technology (IT) security teams, policymakers, and patients in the United States (U.S.) healthcare system. Failure to address this issue may lead to legal penalties, financial losses, and diminished patient trust. Grounded in technology threat avoidance theory, the purpose of this qualitative pragmatic inquiry was to explore the strategies healthcare IT security managers employ to protect patient information when adopting artificial intelligence (AI). The participants were six IT security managers and employees who successfully implemented strategies to protect patient information when adopting AI in the U.S. healthcare system. Data was collected through semistructured interviews and document reviews. Through thematic analysis, four themes were identified: risks of data protection violations, safe practices and controls, persistent challenges, and actionable recommendations for implementing robust data protection strategies. Key recommendations are for healthcare IT security managers to incorporate multiple data protection strategies, enhance current privacy and security policies, enforce obligatory user training, and ensure leadership commitment to the overall protection portfolio. The implications for positive social change include the potential to improve IT security managers' understanding of safeguarding patient data and to foster greater confidence among healthcare workers, patients, and families by ensuring compliance with privacy and security guidelines.

Download

Share

 
COinS