Abstract
One of the main problems in information security was human error due to improper human behaviour. Therefore, this preliminary study was conducted with aims to identify possible factors that can affect user’s compliance behaviour towards information security in terms of two aspects: management support and security technology. Two theories were integrated for development of research framework: I) Theory of Planned Behaviour; II) Theory of Acceptance Model. The respondents of this study were the health professionals and IT officers whereby 42 questionnaires were obtained and verified. Exploratory Factor Analysis (EFA) results revealed that the six factors were obtained: Transactional_Leadership_ Style, Transformational_Leadership_Style, ISP_Training_Support, PU_Security, PU_Security-Countermeasure and PEOU_ISPs. The higher loadings signalled the correlations of the indicated items with the factors on which they were loaded with each of the correspondence factors achieving score of alpha value above 0.80. According to the descriptive analysis, most of the respondents are agreed with all the indicated factors. The preliminary study facilitates researcher in developing new model that integrates TPB and TAM that can be used to increase knowledge of user’s compliance behaviour towards health information system’s security.
Highlights
Health Information System (HIS) has been implemented in Malaysia since late 1990s
The current study aims to fill in this gap by exploring and identifying all the possible factors that might influence users’ behaviour towards information security based on two aspects: (i) management support and (ii) security technology
The first exploratory factor analysis was conducted with the 26 items used to measure the independent variables
Summary
Health Information System (HIS) has been implemented in Malaysia since late 1990s. HIS is utilized in many government hospitals especially those that are located in Lembah Klang, Kuala Lumpur such as Selayang Hospital, Sungai Buloh Hospital, Serdang Hospital, etc. HIS is an integration of several hospitals’ information system to manage administration works, patients and clinical records. HIS can be accessed through Internet where the data can be delivered, stored and processed automatically. Being on the Internet means that the system is vulnerable to inappropriate use [1]. Health data is extremely sensitive, they require high protection and information security must be carefully watched as it plays an important role to protect the data from being stolen or harmed. Information security can be defined as the protection of information systems from unauthorised access and information threat [2]
Sign-in/Register to view highlights & summary Sign-in/Register to access full text options 
Free) 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
