Measuring Cyber Security Awareness within Groups of Medical Professionals in Poland

Hyla, Tomasz; Fabisiak, Luiza

doi:10.24251/hicss.2020.473

Cited by 6 publications

(4 citation statements)

References 20 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Regarding the non-ICT personnel, comparing our findings ( Table 1 ) with a 2020 study in Poland [ 21 ], a 2019 study in a health region of western Finland [ 22 ], and a 2019 study in a health organization in western Canada [ 19 ], revealed the low level of cybersecurity awareness status. In Institutions A, B, and C, the 22.7% that felt sufficiently trained in security and the 23.3% that perceived the importance of the terminals’ content to hackers, appeared significantly lower next to the 51.31% of the 1200 Finnish professionals reporting bring sufficiently aware of the information and the cybersecurity matters pertaining to their job.…”

Section: Discussionmentioning

confidence: 52%

“…Several endeavors towards assessing healthcare personnel’s cybersecurity culture were based on surveys. Indicatively, the surveys in Poland [ 21 ] and Finland [ 22 ] reported that medical professionals lack sufficient cybersecurity training. The analysis in [ 23 ] confirmed human error as one of the most common reasons for security incidents in hospitals.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

A Cybersecurity Culture Survey Targeting Healthcare Critical Infrastructures

et al. 2022

View full text Add to dashboard Cite

Recent studies report that cybersecurity breaches noticed in hospitals are associated with low levels of personnel’s cybersecurity awareness. This work aims to assess the cybersecurity culture in healthcare institutions from middle- to low-income EU countries. The evaluation process was designed and performed via anonymous online surveys targeting individually ICT (internet and communication technology) departments and healthcare professionals. The study was conducted in 2019 for a health region in Greece, with a significant number of hospitals and health centers, a large hospital in Portugal, and a medical clinic in Romania, with 53.6% and 6.71% response rates for the ICT and healthcare professionals, respectively. Its findings indicate the necessity of establishing individual cybersecurity departments to monitor assets and attitudes while underlying the importance of continuous security awareness training programs. The analysis of our results assists in comprehending the countermeasures, which have been implemented in the healthcare institutions, and consequently enhancing cybersecurity defense, while reducing the risk surface.

show abstract

Section: Discussionmentioning

confidence: 52%

Section: Introductionmentioning

confidence: 99%

A Cybersecurity Culture Survey Targeting Healthcare Critical Infrastructures

et al. 2022

View full text Add to dashboard Cite

show abstract

“…For certain types of documents, such as legal, medical, or governmental records, there are often specific regulations governing how they must be scanned, stored, and protected (Hyla and Fabisiak, 2020). Ensuring compliance with these regulations is crucial for maintaining the integrity and security of the documents.…”

Section: Literature Reviewmentioning

confidence: 99%

Securing Digital Copies of the Documents to Ensure Documents' Integrity

Szyjewski

2023

ERSJ

View full text Add to dashboard Cite

Purpose: This article addresses the critical issue of securing the electronic documentation flow, focusing on maintaining document content integrity without compromising ease of use in everyday processes involving documents. Design/Methodology/Approach: The proposed electronic document verification method is versatile and applicable to both electronic and printed documents. The described approach has been meticulously designed and rigorously tested within a certification environment, where the need for confirming users' skills and knowledge is paramount. Findings: In the contemporary landscape dominated by the prevalence of electronic markets and document flow, the potential susceptibility of electronic documentation to forgery often goes unnoticed. The transition to electronic formats renders documentation more vulnerable to unauthorized modifications, leaving no discernible traces of tampering. The advancement of Information Technology (IT) techniques further facilitates the facile alteration of electronic documents, irrespective of whether they are in the form of scanned images stored as bitmap files or in Portable Document Format (PDF). Although commonly perceived as tamper-resistant, these formats are not immune to manual document file manipulations, presenting an avenue for fraudulent activities. Practical Implications: Established techniques such as Private Key Infrastructure (PKI) or cryptographic hash functions for generating document checksums can be employed for this purpose. While effective in preserving content integrity, these methods pose a significant challenge in terms of usability for the average computer user. The study demonstrates the effectiveness of the QR codes usage in simplifying the verification process while maintaining credibility of the document. Originality/value: The article presents a detailed description of the approach, focusing on secure QR codes with extended unique identifiers for efficient verification. It further examines the implementation of this approach within the author's ICT system within International Computer Driving License (ICDL) Certification Program in Poland.

show abstract

“…Accordingly, employees should be aware of cyber risks and be familiar with security measures and actions to be taken in case of damage. Various studies, therefore, investigating the influence of human awareness on the success of security programs (Zwilling et al, 2020) examine the level of knowledge of the test persons and the quality of safety training (Hyla and Fabisiak, 2020) and aim to highlight and combine methods that strengthen the security awareness of employees. In this context, the research shows positive effects especially in the combination of different measures (Abawajy, 2014).…”

Section: Organizational Aspects Of Cybersecuritymentioning

confidence: 99%

Organizational aspects of cybersecurity in German family firms – Do opportunities or risks predominate?

Ulrich

Timmermann

Frank

2021

OCJ

View full text Add to dashboard Cite

PurposeThe starting point for the considerations the authors make in this paper are the special features of family businesses in the area of management discussed in the literature. It has been established here that family businesses sometimes choose different organizational setups than nonfamily businesses. This has not yet been investigated for cybersecurity. In the context of cybersecurity, there has been little theoretical or empirical work addressing the question of whether the qualitative characteristics of family businesses have an impact on the understanding of cybersecurity and the organization of cyber risk defense in the companies. Based on theoretically founded hypotheses, a quantitative empirical study was conducted in German companies.Design/methodology/approachThe article is based on a quantitative-empirical survey of 184 companies, the results of which were analyzed using statistical-empirical methods.FindingsThe article asked – based on the subjective perception of cybersecurity and cyber risks – to what extent family businesses are sensitized to the topic and what conclusions they draw from it. An interesting tension emerges: family businesses see their employees more as a security risk, but do less than nonfamily businesses in terms of both training and organizational establishment. Whether this is due to a lack of technical or managerial expertise, or whether family businesses simply think they can prevent cybersecurity with less formal methods such as trust, is open to conjecture, but cannot be demonstrated with the research approach taken here. Qualitative follow-up studies are needed here.Originality/valueThis paper represents the first quantitative survey on cybersecurity with a specific focus on family businesses. It shows tension between awareness, especially of risks emanating from employees, and organizational routines that have not been implemented or established.

show abstract

Measuring Cyber Security Awareness within Groups of Medical Professionals in Poland

Cited by 6 publications

References 20 publications

A Cybersecurity Culture Survey Targeting Healthcare Critical Infrastructures

A Cybersecurity Culture Survey Targeting Healthcare Critical Infrastructures

Securing Digital Copies of the Documents to Ensure Documents' Integrity

Organizational aspects of cybersecurity in German family firms – Do opportunities or risks predominate?

Contact Info

Product

Resources

About