Information Security Risk Analysis Methods for Healthcare Systems
Amarendar Rao Thangeda1, Alfred Coleman2

1Amarendar Rao Thangeda*, Faculty of Computing, Botho University, Gaborone, Botswana.
2Prof. Alfred Coleman, Computer Science Department, University of South Africa, Pretoria, South Africa.
Manuscript received on September 10, 2020. | Revised Manuscript received on September 20, 2020. | Manuscript published on October 30, 2020. | PP: 170-177 | Volume-10 Issue-1, October 2020. | Retrieval Number: 100.1/ijeat.A16911010120 | DOI: 10.35940/ijeat.A1691.1010120
Open Access | Ethics and Policies | Cite | Mendeley
© The Authors. Blue Eyes Intelligence Engineering and Sciences Publication (BEIESP). This is an open access article under the CC BY-NC-ND license (http://creativecommons.org/licenses/by-nc-nd/4.0/)

Abstract: Information and risk analysis in healthcare system is an important issue in the modern technological growth. There are many systems implemented for information security and risk management for information protection. Proper guidance is needed to select the system as all the systems concentrate on information security of healthcare system. The information threats and risk are increasing, and all the issues are integrated to the vulnerabilities producing risk for the healthcare security. The healthcare system process structure and variation are advocated, in which operating performance indication is based on risk scaling factor so that dynamic information security risk analysis is needed. This paper is proposed for information security risk analysis in which the resources, risk threats, vulnerabilities that control the healthcare system. The paper compares the various inputs and outputs are needed by different systems of information security risk assessment and analysis that accurately presents the information security risk. At present, large number of information security risk analysis methodologies are present in the worldwide. Important and efficient methodologies are considered for comparison and quantitative purpose to choose most suitable methodology for healthcare system. 
Keywords: Information security risk analysis, healthcare security system, risk assessment, risk threats, risk vulnerabilities