A recent healthcare industry survey report indicates that 69 percent of healthcare organizations suffered more than one security breach in 2011 despite conducting regular risk analysis, according to the InformationWeek.
According to the report from Kroll Advisory Solutions and the Healthcare Information and Management Systems Society, organizations have a checklist mentality for compliance with security regulations.
Survey authors indicated the organizations are not carrying out meaningful improvements in managing patient personal health information and identity integrity.
In December 2011, the authors interviewed nearly 250 senior information technology executives for the report.
Twenty-seven percent of respondents said they experience data security breaches, compared to 19 percent in 2010 and 13 percent in 2008.
Fifty-six percent attributed the breaches specifically to unauthorized data access by an employee and 22 percent of those who had a security breach said the incident originated from a stolen device.