• 主题
高级搜索  >
历史搜索 清空历史
首页> 外文会议>20th International conference for the International Association for Management of Technology : Technology and the Global Challenges: Security, Energy, Water, and the Environment. >Information Technology Governance, Risk and Compliance as an Executive Level Concern in Swiss Healthcare
【24h】

Information Technology Governance, Risk and Compliance as an Executive Level Concern in Swiss Healthcare

机译:信息技术治理,风险与合规成为瑞士医疗保健领域的高管关注点

获取原文
获取原文并翻译 | 示例
页面导航
  • 摘要
  • 著录项
  • 相似文献
  • 相关主题

摘要

Governance, Risk Management and Compliance (GRC) is an executive level concern in many enterprises today. It is an approach that addresses not only the establishment of business rules but more importantly how those rules are integrated into sensible organizational structures, embedded into the day-to-day business processes of the organization, communicated including ongoing training and monitored for compliance. In the first section of this paper, different focus areas for the GRC approach have been derived. The successful application of IT governance principles can provide a mechanism to increase the effectiveness of IT and, in turn, meet the increasingly high demands from business for IT. The purpose of a survey with several Swiss hospital CIOs was to reach members of the IT management to determine their sense of priority and actions taken relative to IT governance, as well as their need for tools and services to help ensure effective IT governance. This survey aims to give an overview of the common IT governance models already used in the healthcare sector and attempts to answer the question if they really meet the requirements of the healthcare sector as a complex and heterogeneous economic sector. To accomplish these aims, a maturity model has been developed to measure the extent to which the different GRC focus areas based on the Control Objectives for Information and related Technology (CobiT) Maturity Model have been selected and how they have been.
机译:治理,风险管理和合规性(GRC)是当今许多企业中执行级别的关注点。这种方法不仅解决业务规则的建立,而且更重要的是,如何将这些规则集成到明智的组织结构中,嵌入到组织的日常业务流程中,进行沟通,包括进行中的培训和监督合规性。在本文的第一部分中,已经得出了GRC方法的不同重点领域。 IT治理原则的成功应用可以提供一种机制,以提高IT的有效性,从而满足企业对IT日益增长的需求。与几家瑞士医院的CIO进行调查的目的是让IT管理层了解他们对IT治理的重视程度和采取的行动,以及他们对工具和服务的需求,以帮助确保有效的IT治理。这项调查旨在概述医疗保健部门已经使用的常见IT治理模型,并试图回答这些问题是否真正满足了医疗保健部门作为复杂和异构经济部门的要求。为了实现这些目标,已经开发了一个成熟度模型,以根据信息和相关技术的控制目标(CobiT)成熟度模型选择不同GRC重点领域的程度以及如何选择它们。

著录项

相似文献

  • 外文文献
  • 中文文献
  • 专利
获取原文

客服邮箱:kefu@zhangqiaokeyan.com

京公网安备:11010802029741号 ICP备案号:京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有

  • 客服微信

  • 服务号