Authors
Patricia Williams
Publication date
2008/3/21
Journal
Information Management & Computer Security
Volume
16
Issue
1
Pages
58-73
Publisher
Emerald Group Publishing Limited
Description
Purpose
–
The manner in which information is used and communicated in the medical environment has been revolutionized by the introduction of electronic storage, manipulation and communication of information. This change has brought with it many challenges in information security. This research seeks to propose a practical application, the capability maturity model (CMM), to meet the needs of medical information security practice.
Design/methodology/approach
–
This paper builds on previous work by the author using the Tactical Information Governance for Security model developed for the medical setting. An essential element of this model is the ability to assess current capability of a practice to meet the needs of security and to identify how improvements can be made. Existing CMM models are reviewed to inform construction of an operational framework for capability assessment.
Findings
–
An operational …
Total citations
Scholar articles
P Williams - Information Management & Computer Security, 2008