Human and organizational factors of healthcare data breaches: The swiss cheese model of data breach causation and prevention

Faouzi Kamoun, Zayed University
Mathew Nicho, University of Dubai

Document Type

Article

Source of Publication

International Journal of Healthcare Information Systems and Informatics

Publication Date

1-1-2014

Abstract

Copyright © 2014, IGI Global. Copying or distributing in print or electronic forms without written permission of IGI Global is prohibited. Over the past few years, concerns related to healthcare data privacy have been mounting since healthcare information has become more digitized, distributed and mobile. However, very little is known about the root cause of data breach incidents; making it difficult for healthcare organizations to establish proper security controls and defenses. Through a systematic review and synthesis of data breaches literature, and using databases of earlier reported healthcare data breaches, the authors re-examine and analyze the causal factors behind healthcare data breaches. The authors then use the Swiss Cheese Model (SCM) to shed light on the technical, organizational and human factors of these breaches. The author's research suggests that incorporating the SCM concepts into the healthcare security policies and procedures can assist healthcare providers in assessing the vulnerabilities and risks associated with the maintenance and transmission of protected health information.

ISSN

1555-3396

Publisher

IGI Global

Volume

9

Issue

1

First Page

42

Last Page

60

Disciplines

Computer Sciences

Keywords

Computer security, Data breach, Data protection, Electronic health record, Patient data privacy

Scopus ID

84928037595

Indexed in Scopus

yes

Open Access

yes

Open Access Type

Green: A manuscript of this publication is openly available in a repository

Link to Full Text

Share

COinS