| Publikationstyp: | Konferenz: Paper |
| Art der Begutachtung: | Peer review (Abstract) |
| Titel: | Information technology governance, risk and compliance in health care : a management approach |
| Autor/-in: | Krey, Mike |
| DOI: | 10.1109/DeSE.2010.8 |
| Tagungsband: | 2010 Developments in E-systems Engineering |
| Seite(n): | 7 |
| Seiten bis: | 11 |
| Angaben zur Konferenz: | International Conference on Developments in eSystems Engineering, London, United Kingdom, 6-8 September 2010 |
| Erscheinungsdatum: | 2010 |
| Verlag / Hrsg. Institution: | IEEE |
| Verlag / Hrsg. Institution: | Piscataway |
| ISBN: | 978-1-4244-8044-9 |
| Sprache: | Englisch |
| Schlagwörter: | Health care; Risk; Compliance; Governance |
| Fachgebiet (DDC): | 362: Gesundheits- und Sozialdienste 658.4: Leitendes Management |
| Zusammenfassung: | Governance, Risk Management and Compliance (GRC) is an executive level concern in many enterprises today. It is an approach that addresses not only the establishment of business rules but more importantly how those rules are integrated into sensible organizational structures, embedded into the day-to-day business processes of the organization, communicated including ongoing training and monitored for compliance. In the first section of this paper, different focus areas for the GRC approach have been derived. The successful application of IT governance principles can provide a mechanism to increase the effectiveness of IT and, in turn, meet the increasingly high demands from business for IT. The purpose of a survey with several Swiss hospital CIOs was to reach members of the IT management to determine their sense of priority and actions taken relative to IT governance, as well as their need for tools and services to help ensure effective IT governance. This survey aims to give an overview of the common IT governance models already used in the healthcare sector and attempts to answer the question if they really meet the requirements of the healthcare sector as a complex and heterogeneous economic sector. To accomplish these aims, a maturity model has been developed to measure the extent to which the different GRC focus areas based on the Control Objectives for Information and related Technology (CobiT) Maturity Model have been selected and how they have been perceived. |
| URI: | https://digitalcollection.zhaw.ch/handle/11475/15425 |
| Volltext Version: | Publizierte Version |
| Lizenz (gemäss Verlagsvertrag): | Lizenz gemäss Verlagsvertrag |
| Departement: | School of Management and Law |
| Enthalten in den Sammlungen: | Publikationen School of Management and Law |
Dateien zu dieser Ressource:
Es gibt keine Dateien zu dieser Ressource.
Zur Langanzeige
Krey, M. (2010). Information technology governance, risk and compliance in health care : a management approach [Conference paper]. 2010 Developments in E-Systems Engineering, 7–11. https://doi.org/10.1109/DeSE.2010.8
Krey, M. (2010) ‘Information technology governance, risk and compliance in health care : a management approach’, in 2010 Developments in E-systems Engineering. Piscataway: IEEE, pp. 7–11. Available at: https://doi.org/10.1109/DeSE.2010.8.
M. Krey, “Information technology governance, risk and compliance in health care : a management approach,” in 2010 Developments in E-systems Engineering, 2010, pp. 7–11. doi: 10.1109/DeSE.2010.8.
KREY, Mike, 2010. Information technology governance, risk and compliance in health care : a management approach. In: 2010 Developments in E-systems Engineering. Conference paper. Piscataway: IEEE. 2010. S. 7–11. ISBN 978-1-4244-8044-9
Krey, Mike. 2010. “Information Technology Governance, Risk and Compliance in Health Care : A Management Approach.” Conference paper. In 2010 Developments in E-Systems Engineering, 7–11. Piscataway: IEEE. https://doi.org/10.1109/DeSE.2010.8.
Krey, Mike. “Information Technology Governance, Risk and Compliance in Health Care : A Management Approach.” 2010 Developments in E-Systems Engineering, IEEE, 2010, pp. 7–11, https://doi.org/10.1109/DeSE.2010.8.
Alle Ressourcen in diesem Repository sind urheberrechtlich geschützt, soweit nicht anderweitig angezeigt.