The status of information systems in the hospitals of the Greek National Health System
Hospitals increasingly rely on their information
systems to efficiently and effectively carry out both their administrative and
medical function. In Greek National Health System hospitals, the situation with
HISs has started to change in recent years. In this paper, we present the
results of a survey, performed among all public Greek hospitals regarding their
information systems. The results show that the general strategy of developing
smaller ISs for each medical department has changed towards developing holistic
systems; however, considerable room for further improvement still exists.
The Security of Information Systems in Greek Hospitals
Hospital information systems increasingly
handle information related to the health status of citizens, due to the
proliferation of the use of the electronic health record. Because of this, hospital
information systems constitute a part of a country’s critical information
infrastructure; hence, the state of affairs regarding their security is of
paramount interest. In this paper we report on the results of a survey
performed among all public Greek hospitals regarding the security of their
information systems. Comparisons to the situation in other countries as this is
manifested in similar studies are made and conclusions are drawn; these
indicate that there is much room for improvement.
Disaster Recovery Analysis and Management Method (DRAMM): An IT management tool
After the disaster striking the information system, the organization has to react rapidly in order to continue to function. In the absence of an alternative site, a scaled-down version of the information system, possibly with scaled-down performance, has to be deployed in order to provide the organization’s Critical Business Functions and the related necessary Services. This has to be deployed within a few hours and to reflect the last snapshot of the main information system. This paper proposes a software tool that can define a scaled-down information system with the associated workstation structure, with which the organization can achieve a scaled-down performance. With the DRAMM tool, the IT staff can significantly reduce the time needed to deploy the scaled-down version of the information system, taking into account all changes in the main information system before the disaster.
Enhancing SSADM with disaster recovery plan activities
In the last few years, the development of ISs has become an object of study and has led to the publication of a great number of articles and books since it has gained wide acceptance. A large number of organizations have started to develop their own proprietary ISs or they replace their older systems with new technology ones. In most cases, both risk analysis and much more the development of a DRP project take place after the completion of the installation of the new system – which is designed to operate for Normal Operations. Its design, development, and installation are based on some certain ground, with view to meet particular needs, and meant to serve an organization’s certain strategic goals. In case of a system disaster, the organization – which based its operation upon that system – must be able to keep operating by using a system that a) must be designed on the same ground so as to meet the organization’s basic needs, b) should be installed in a different area, c) must be totally compatible with the Ν.Ο. system and, d) meant to fulfill the same strategic goals. The design of this new E.O. system is possible to be made in parallel with the N.O. system design. This paper proposes the enhancement of the SSADM methodology by integrating DRP activities in every stage of the methodology, in parallel with the activities of designing the system for Normal Operations.
Integrating disaster recovery plan activities into the system development life cycle
The development of an IS for an organization is a project of a strategic nature. The development process is a time-consuming and special budgeted project that follows the six stages of the System Development Life Cycle (SDLC). Integrating security within the SDLC is a very important issue. The security of an IS is designed at the very early stages of its development. A security object that is nowadays a must is the Disaster Recovery Plan. Security questions like “Is the Information System Security an issue that has to be a matter of concern for the organization from the start of Information System development?” and “At which stage of its development does an Information System begin to be at risk ?” concern both the organizations and the developers. This paper proposes the enhancement of the SDLC stages in order to reduce the risks from the start of a development, by integrating the development of the Disaster Recovery Plan into the SDLC process. Details are given on how to achieve this, as well as the reasons and the benefits to the organization and to the manufacturer.
Enterprise Recovery In Health Care
Enterprise recovery planning, also known as Disaster Recovery or Business Continuity Planning, is a necessity that will keep an organisation in business following a disaster affecting one or more of its information systems. In Health Care, organisations have very little time to recover, due to the nature of their business: life and health. This paper aims to reveal the reasons that make disaster recovery planning necessary, the benefits of the existence of such a plan for the organisation, and the essential action that must be taken towards the development and establishment of a disaster recovery plan.