Abstract

Electronic Health Record (EHR) becomes increasingly pervasive and the need to safeguard EHR becomes more vital for healthcare organizations. Human error is known as the biggest threat to information security in Electronic Health Systems that can be minimized through awareness training programs. There are various techniques available for awareness of information security. However, research is scant regarding effective information security awareness delivery methods. It is essential that effective awareness training delivery method is selected, designed, and executed to ensure the appropriate protection of organizational assets. This study adapts Holton’s transfer of training model to develop a framework for effective information security awareness training program. The framework provides guidelines for organizations to select an effective delivery method based on the organizations’ needs and success factor, and to create information security content from a selected healthcare’s internal information security policy and related international standards. Organizations should make continual efforts to ensure that content of policy is effectively communicated to the employees.

Highlights

  • The general objective of this paper is to enhance effectiveness of information security awareness training programs

  • Literature [21] stated that it is essential to increase the effectiveness of information security awareness training programs by encouraging employees to make effort in transferring the skills learned to their daily job activities

  • This paper suggests that primarily effect of these components is on the choice of training delivery method [9]

Read more

Summary

INTRODUCTION

The general objective of this paper is to enhance effectiveness of information security awareness training programs. Human error can be minimized through awareness training programs [4]. Normal human errors refer to individual honest mistakes that are already recognized and can be prevented in advance [5]. These kind of errors can be corrected through training programs with an intention to promote behaviors of individuals toward organizational policy. Education and training programs in organizations can help to improve employees’ awareness toward security of ehealth system and help them to adhere to appropriate behaviors that do not compromise the security of the system.

BACKGROUND
RESEARCH DESIGN
Transfer of Training
CONCEPTUAL FRAMEWORK
Motivation to Transfer
Transfer Climate
Transfer Design
Transfer Content
TRAINING CONTENT
INFORMATION SECURITY POLICY DOCUMENT
TRAINING DELIVERY METHOD
Organization Training Need Assessment
Training Development Plan
Training Success Factors
VIII. CONCLUSION
Literature
Evaluation

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.