论文信息 - Linking Cyber Security Improvement Actions in Healthcare Systems to Their Strategic Improvement Needs

Linking Cyber Security Improvement Actions in Healthcare Systems to Their Strategic Improvement Needs

Abstract The healthcare industry lags behind other industries in protecting its data from cyber-attacks. As health data contain sensitive personal and financial information, cyber security incidents are a growing threat. To change this trend, it is important to develop systematic procedures for identifying suitable approaches for responding to these needs. The main objective of the research described in this article is to build a structured framework of an eventual empirical research for linking cyber security improvement actions in healthcare systems to their strategic improvement needs. The structured framework is based on Quality Function Deployment (QFD), initially a product oriented quality technique. The essence of the QFD method is to extract the customer needs or desires and then to translate them into measurable product quality characteristics and further processing. As by its structure this is a generic multi-purpose planning framework, its usage has been enhanced to include many other topics. Our conceptual model has a top-down structure with QFD sequential matrices. To propagate the improvement needs from the strategic level to the action level, two QFD oriented matrices are developed. The first matrix translates the strategic improvement needs of a healthcare system into prioritized information/cyber improvement needs. The second matrix prioritizes the actions for improving the information/cyber procedures.

Miryam Barad | M. Barad

[1] Miryam Barad,et al. Linking improvement models to manufacturing strategies - a methodology for SMEs and other enterprises , 2001 .

[2] J. Hauser,et al. The House of Quality , 1988 .

[3] Nigel Slack,et al. The Importance‐Performance Matrix as a Determinant of Improvement Priority , 1994 .

[4] J. Pfeffer. Producing sustainable competitive advantage through the effective management of people * , 2006 .

[5] J. C. Flanagan. Psychological Bulletin THE CRITICAL INCIDENT TECHNIQUE , 2022 .

[6] Cristina Madorrán Garcı́a,et al. Strategies and performance in hospitals. , 2004 .

[7] L. Coventry,et al. Cybersecurity in healthcare: A narrative review of trends, threats and ways forward. , 2018, Maturitas.

[8] T. Douglas,et al. Understanding competitive advantage in the general hospital industry: evaluating strategic competencies , 2003 .

[9] Ming-Lu Wu,et al. Quality function deployment: A literature review , 2002, Eur. J. Oper. Res..

[10] C. Kruse,et al. Cybersecurity in healthcare: A systematic review of modern threats and trends. , 2017, Technology and health care : official journal of the European Society for Engineering and Medicine.