An integrated management system for quality and information security in healthcare

Health service organizations are increasingly required to deliver quality healthcare services without increasing costs. The adoption of health information technologies can assist these organizations to deliver a quality service; however, this again exposes the health information to threats. The prot...

Full description

Bibliographic Details
Main Author: Tyali, Sinovuyo
Format: Others
Language:English
Published: Nelson Mandela Metropolitan University 2012
Subjects:
Online Access:http://hdl.handle.net/10948/d1012134
id ndltd-netd.ac.za-oai-union.ndltd.org-nmmu-vital-9800
record_format oai_dc
spelling ndltd-netd.ac.za-oai-union.ndltd.org-nmmu-vital-98002017-12-21T04:22:39ZAn integrated management system for quality and information security in healthcareTyali, SinovuyoHealth services administration -- Quality controlHealth service organizations are increasingly required to deliver quality healthcare services without increasing costs. The adoption of health information technologies can assist these organizations to deliver a quality service; however, this again exposes the health information to threats. The protection of personal health information is critical to ensure the privacy of patients in the care of health service organizations. Therefore both quality and information security are of importance in healthcare. Organisations commonly use management system standards to assist them to improve a particular function (e.g. quality or security) through structured organizational processes to establish, maintain and optimise a management system for the particular function. In the healthcare sector, the ISO 9001, ISO 9004 and IWA 1 standards may be used for the purpose of improving quality management through the establishment of a quality management system. Similarly, the ISO 27001 and ISO 27799 standards may be used to improve information security management through the establishment of an information security management system. However, the concurrent implementation of multiple standards brings confusion and complexity within organisations. A possible solution to the confusion is to introduce an integrated management system that addresses the requirements of multiple management systems. In this research, various standards relevant to the establishment of management systems for quality and security are studied. Additionally, literature on integrated management systems is reviewed to determine a possible approach to establishing an IMS for quality and information security in healthcare. It will be shown that the quality management and information security management standards contain commonalities that an integration approach can be based on. A detailed investigation of these commonalities is done in order to present the final proposal of the IMSQS, the Integrated Management System for Quality and Information Security in healthcare.Nelson Mandela Metropolitan UniversityFaculty of Engineering, the Built Environment and Information Technology2012ThesisMastersMTech118 leavespdfvital:9800http://hdl.handle.net/10948/d1012134EnglishNelson Mandela Metropolitan University
collection NDLTD
language English
format Others
sources NDLTD
topic Health services administration -- Quality control
spellingShingle Health services administration -- Quality control
Tyali, Sinovuyo
An integrated management system for quality and information security in healthcare
description Health service organizations are increasingly required to deliver quality healthcare services without increasing costs. The adoption of health information technologies can assist these organizations to deliver a quality service; however, this again exposes the health information to threats. The protection of personal health information is critical to ensure the privacy of patients in the care of health service organizations. Therefore both quality and information security are of importance in healthcare. Organisations commonly use management system standards to assist them to improve a particular function (e.g. quality or security) through structured organizational processes to establish, maintain and optimise a management system for the particular function. In the healthcare sector, the ISO 9001, ISO 9004 and IWA 1 standards may be used for the purpose of improving quality management through the establishment of a quality management system. Similarly, the ISO 27001 and ISO 27799 standards may be used to improve information security management through the establishment of an information security management system. However, the concurrent implementation of multiple standards brings confusion and complexity within organisations. A possible solution to the confusion is to introduce an integrated management system that addresses the requirements of multiple management systems. In this research, various standards relevant to the establishment of management systems for quality and security are studied. Additionally, literature on integrated management systems is reviewed to determine a possible approach to establishing an IMS for quality and information security in healthcare. It will be shown that the quality management and information security management standards contain commonalities that an integration approach can be based on. A detailed investigation of these commonalities is done in order to present the final proposal of the IMSQS, the Integrated Management System for Quality and Information Security in healthcare.
author Tyali, Sinovuyo
author_facet Tyali, Sinovuyo
author_sort Tyali, Sinovuyo
title An integrated management system for quality and information security in healthcare
title_short An integrated management system for quality and information security in healthcare
title_full An integrated management system for quality and information security in healthcare
title_fullStr An integrated management system for quality and information security in healthcare
title_full_unstemmed An integrated management system for quality and information security in healthcare
title_sort integrated management system for quality and information security in healthcare
publisher Nelson Mandela Metropolitan University
publishDate 2012
url http://hdl.handle.net/10948/d1012134
work_keys_str_mv AT tyalisinovuyo anintegratedmanagementsystemforqualityandinformationsecurityinhealthcare
AT tyalisinovuyo integratedmanagementsystemforqualityandinformationsecurityinhealthcare
_version_ 1718565070788624384