Security Immunization Using Basic Countermeasures

The increased use of computing has significantly raised the profile of information security within the clinical environment. Medical information security is concerned with protecting the assets of a medical practice. These assets include hardware, software and intellectual property. To date, computer and information security in this environment has been poorly applied. Whilst the tenets of confidentiality and privacy are paramount in the practise of medicine, they are inadequately protected in the evolving electronic environment. Protection stems from an acknowledgment that risks exist, the identification of the assets to be protected, and the application of security countermeasures to manage the risks. In this field, many guidelines have been developed, however most are not easily applied by physicians and nontechnical staff charged with the responsibility of securing their medical systems. However, there are basic countermeasures can be applied with minimal technical knowledge of information security