W Priestman scite author profile

BackgroundNumerous studies have examined factors related to success, failure and implications of electronic patient record (EPR) system implementations, but usually limited to specific aspects.ObjectiveTo review the published peer-reviewed literature and present findings regarding factors important in relation to successful EPR implementations and likely impact on subsequent clinical activity.MethodLiterature review.ResultsThree hundred and twelve potential articles were identified on initial search, of which 117 were relevant and included in the review. Several factors were related to implementation success, such as good leadership and management, infrastructure support, staff training and focus on workflows and usability. In general, EPR implementation is associated with improvements in documentation and screening performance and reduced prescribing errors, whereas there are minimal available data in other areas such as effects on clinical patient outcomes. The peer-reviewed literature appears to under-represent a range of technical factors important for EPR implementations, such as data migration from existing systems and impact of organisational readiness.ConclusionThe findings presented here represent the synthesis of data from peer-reviewed literature in the field and should be of value to provide the evidence-base for organisations considering how best to implement an EPR system.

show abstract

Phishing in healthcare organisations: threats, mitigation and approaches

Priestman

Anstis

Sebire

et al. 2019

BMJ Health Care Inform

View full text Add to dashboard Cite

IntroductionHealthcare data have significant value as a potential target for hackers. Phishing is a method of exploitation for malicious reasons using targeted communications (email/messaging). This study reports on an internal evaluation targeting hospital staff and summarises peer-reviewed literature regarding phishing and healthcare.MethodsAn assessment was performed as part of cybersecurity activity during a designated test period using multiple credential harvesting approaches through staff email. We also searched the medical-related literature to identify relevant phishing-related publications.ResultsDuring the 1-month testing period, the organisation received 858 200 emails: 139 400 (16%) marketing, 18 871 (2%) identified as potential threats. Of 143 million internet transactions, around 5 million (3%) were suspected threats. 468 employee email addresses were identified from public data and targeted through phishing using a range of payloads including attachments and malicious links; however, no credentials were recovered or malicious files downloaded. Several hospital employees were, however, identified on social media profiles, including some tricked into accepting false friend requests.DiscussionHealthcare organisations are increasingly moving to digital systems, but healthcare professionals have limited awareness of threats. Increasing emphasis on ‘cyberhygiene’ and information governance through mandatory training increases understanding of these risks. While no credentials were harvested in this study, since up to 5% of emails/internet traffic are suspicious, the need for robust firewalls, cybersecurity infrastructure, IT policies and, most importantly of all, staff training, is emphasised.ConclusionHospitals receive a significant volume of potentially malicious emails. While many staff appear to be aware of phishing and respond appropriately, ongoing education is required across the spectrum of cybersecurity, with specific emphasis around ‘leakage’ of information on social media.

show abstract

Chief Information Officer team evolution in university hospitals: interaction of the three ‘C’s (CIO, CCIO, CRIO)

Sridharan

Priestman

Sebire

2018

BMJ Health Care Inform

View full text Add to dashboard Cite

Background The Chief Information Officer (CIO) and Chief Clinical Information Officer (CCIO) are now established senior roles in hospital practice. With increasing emphasis on optimising use of routine health data for secondary purposes and research, additional skills are required as part of the senior information officer team, particularly in academic health care institutions. Objective To present the role of the Chief Research Information Officer (CRIO), as an emerging, and important, component of the senior information team. Method We review recent publications describing the composition of the senior information team, including CIO and CCIO roles, and discuss the development of the CRIO as a distinct component of the team, based on the published evidence and our experience. Results The CRIO is emerging as an additional senior role in academic healthcare institutions, whose roles include leadership of the informatics strategy and optimisation of routine data collection systems for research data use, in addition to important aspects of research data governance. Such individuals should be senior clinicians with experience in informatics, in addition to having established research expertise and knowledge of research processes, governance and academic networks. Conclusions The CRIO is emerging as a distinct senior information leadership role in conjunction with the already established positions of CCIO and CIO, who together, can provide optimal oversight of digital activities across the organisation. Keywords: CRIO, CCIO, CIO, clinical informatics, research, data Practical applications and discussions

show abstract

Lessons learned from a comprehensive electronic patient record procurement process—implications for healthcare organisations

Priestman

Collins

Vigne

et al. 2019

BMJ Health Care Inform

View full text Add to dashboard Cite

BackgroundThis study describes learning from procurement of a comprehensive electronic patient record (EPR/electronic health record (EHR)), system for a specialist clinical academic institution.MethodRetrospective review of procurement process in addition to evaluation of peer-reviewed literature in the field.ResultsMain lessons learned include the importance of detailed preparation of organisational requirements/specifications and organisational ‘readiness’. Early staff involvement, resulting in ownership of the selected system by the organisation was a key achievement. The scoring process used required significant resource commitment but, despite being extensive in scope, provided relatively poor distinction between suppliers, despite significant variation in supplier self-scoring. Other elements, such as demonstrations and site visits, provided superior evaluation of functional abilities, and specification requirements should be regarded as threshold evaluation.ConclusionWhile principles should be followed, the procurement process must be modified to meet the needs of the specific organisation, in terms of its clinical activities, digital maturity, existing infrastructure and budget.

show abstract

Digital medicine scoping: current state and future directions

Sebire

Sridharan

Priestman

2018

View full text Add to dashboard Cite

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

W Priestman

What to expect from electronic patient record system implementation: lessons learned from published evidence

Phishing in healthcare organisations: threats, mitigation and approaches

Chief Information Officer team evolution in university hospitals: interaction of the three ‘C’s (CIO, CCIO, CRIO)

Lessons learned from a comprehensive electronic patient record procurement process—implications for healthcare organisations

Digital medicine scoping: current state and future directions

Contact Info

Product

Resources

About