Author_Institution :
Inst. of Bus. Inf. Technol., Zurich Univ. of Appl. Sci., Zurich, Switzerland
Abstract :
Because the systematic management of assets, systems, and stakeholders are essential to the overall effectiveness of IT in hospitals, hospital IT executives must balance many competing priorities. These endeavours require, in addition to the appropriate utilisation of given IT resources, a far-sighted alignment of IT issues with objectives, and a thorough understanding of uncertainties and legal obligations. This approach to integrated IT governance, IT risk management, and IT compliance (IT GRC) in the hospital Environment is the subject of the work presented here. Given the complexities in both, the hospital environment and the field of IT GRC, the objectives of this works are to systemise the significance of integrated IT GRC for health care to analyse the degree to which the principles of IT GRC are recognised, established, and accepted by CIOs and IT executives of Swiss hospitals, and finally, to draw conclusion on the greatest barriers to overcome.
Keywords :
health care; hospitals; information technology; law; risk management; IT compliance; IT governance; IT risk management; Swiss hospitals; health care; information technology; integrated IT GRC; legal obligations; systematic management; Bibliographies; Hospitals; Information technology; Reliability; Risk management; Hospital; IT GRC; Survey; Switzerland;
