Expert Perspectives on Information Security Awareness Programs in Medical Care Institutions in Germany - Research portal of Justus Liebig University Giessen:

Conference paper

Expert Perspectives on Information Security Awareness Programs in Medical Care Institutions in Germany

Authors list: Tolsdorf, Jan; Lo Iacono, Luigi

Appeared in: HCI for Cybersecurity, Privacy and Trust

Editor list: Moallem, Abbas

Publication year: 2024

Pages: 98-117

ISBN: 978-3-031-61381-4

eISBN: 978-3-031-61382-1

DOI Link: https://doi.org/10.1007/978-3-031-61382-1_7

Conference: 6th International Conference on Cybersecurity, Privacy and Trust (HCI-CPT 2024)

Title of series: Lecture Notes in Computer Science

Number in series: 14729

Abstract:

Human factors play a crucial role in the increasing number of information security incidents in the medical sector. European medical institutions, especially in Germany, have long neglected these factors, lacking legal obligations. Legislators recently responded with new regulations mandating medical facilities to implement information security awareness programs. To gain insights into how German medical institutions approach this challenge, we conducted an interview study with six information security experts from the medical sector. Using thematic analysis, we find that human factors are seen as both a risk and an opportunity for information security. We identified various target groups, goals, and obstacles for the implementation of information security awareness programs. Existing structures and regulations promote the risk of a checklist mentality, potentially resulting in ineffective measures being implemented. One great opportunity for effective information security awareness programs lies in the exchange with staff units on safety and hygiene, who have decades of experience with awareness programs in medical facilities. The study results serve for future research and tailored awareness programs in the medical sector.

Authors/Editors

- Uni.-Prof. Dr.-Ing. Luigi Lo Iacono

Citation Styles

Harvard Citation style: Tolsdorf, J. and Lo Iacono, L. (2024) Expert Perspectives on Information Security Awareness Programs in Medical Care Institutions in Germany, in Moallem, A. (ed.) HCI for Cybersecurity, Privacy and Trust. Cham: Springer. pp. 98-117. https://doi.org/10.1007/978-3-031-61382-1_7

APA Citation style: Tolsdorf, J., & Lo Iacono, L. (2024). Expert Perspectives on Information Security Awareness Programs in Medical Care Institutions in Germany. In Moallem, A. (Ed.), HCI for Cybersecurity, Privacy and Trust. (pp. 98-117). Springer. https://doi.org/10.1007/978-3-031-61382-1_7