TY - GEN
T1 - Business Continuity Plan and Risk Assessment Analysis in Case of a Cyber Attack Disaster in Healthcare Organizations
AU - Zare, Hossein
AU - Wang, Ping
AU - Zare, Mohammad J.
AU - Azadi, Mojgan
AU - Olsen, Peter
N1 - Funding Information:
Special thanks to Prof. Darrell Gaskin William C. and Nancy F. Richardson Professor in Health Policy, Department of Health Policy and Management and Director of the Johns Hopkins Center for Health Disparities Solutions for his support at Johns Hopkins Bloomberg School of Public Health.
Publisher Copyright:
© Springer Nature Switzerland AG 2020.
PY - 2020
Y1 - 2020
N2 - A business continuity plan (BCP) focuses on sustaining an organization’s business functions during and after an event, incidence, or disruption. Six main stages define an effective BCP. Using indicators suggested by Yang and the Academy of Science, this paper develops a model to perform risk assessment analysis in case of a disaster with focus on information technology. For managing an incidence, an organization needs to have a BCP. A lack of a BCP could put an organization at a major risk, in HC organizations lack of BCP and ineffective dialogue with other organizations potentially creates catastrophic effect on patients. Disaster readiness exercises, disaster recovery objectives, and information technology system availability ranked as top three elements of a BCP. The paper recommends a viable, repeatable, and verifiable continuity capability to keep a business and its personnel secure and safe.
AB - A business continuity plan (BCP) focuses on sustaining an organization’s business functions during and after an event, incidence, or disruption. Six main stages define an effective BCP. Using indicators suggested by Yang and the Academy of Science, this paper develops a model to perform risk assessment analysis in case of a disaster with focus on information technology. For managing an incidence, an organization needs to have a BCP. A lack of a BCP could put an organization at a major risk, in HC organizations lack of BCP and ineffective dialogue with other organizations potentially creates catastrophic effect on patients. Disaster readiness exercises, disaster recovery objectives, and information technology system availability ranked as top three elements of a BCP. The paper recommends a viable, repeatable, and verifiable continuity capability to keep a business and its personnel secure and safe.
KW - BCP
KW - Continuity plan
KW - Cyber attack disaster in healthcare
KW - Departmental contingency plans
KW - Risk assessment analysis
UR - http://www.scopus.com/inward/record.url?scp=85085732894&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85085732894&partnerID=8YFLogxK
U2 - 10.1007/978-3-030-43020-7_19
DO - 10.1007/978-3-030-43020-7_19
M3 - Conference contribution
AN - SCOPUS:85085732894
SN - 9783030430191
T3 - Advances in Intelligent Systems and Computing
SP - 137
EP - 144
BT - 17th International Conference on Information Technology–New Generations, ITNG 2020
A2 - Latifi, Shahram
PB - Springer
T2 - 17th International Conference on Information Technology: New Generations, ITNG 2020
Y2 - 5 April 2020 through 8 April 2020
ER -