Cybersecurity management in healthcare: A systematic review (Preprint)

Abstract

Modern healthcare is highly digitalized and depend on various systems and services. The healthcare is also a critical function of a society and must be protected from various cybersecurity threats. The key role in securing the healthcare organization from cybersecurity breaches resides with the management.

This study aims to find answers to a following question: What areas of cybersecurity management in healthcare have been studied by the previous literature?

A systematic literature review is used to synthesize the literature related cybersecurity management in healthcare sector with two frameworks; Sosio-technical approach and ISO / IEC 27001.

Results showed the covered and uncovered areas of cybersecurity management in healthcare. According to the results several gaps in the previous literature related to the subject were found.

The existing studies are more concerned with ensuring compliance than maintaining cultural fit or balancing information security and business needs.