ISO 27001 is the first international standard for the evaluation of information security management systems to ensure that the organization holding this certificate pursue the highest level of information security.
ISO 27001 provides the framework for a technology neutral, vendor-neutral management system that enables an organization to assure itself that its information security measures are effective. This includes continued accessibility, confidentiality and integrity of its own information and that of its stakeholders as well as legal compliance.
Engineer Khalid AlSalama, Director of Information Technology and Communications in KFMC, stated that the certificate represents an achievement of King Fahd Medical City and is an indication of the extent of its commitment to implement international standards in information security. He further explained that the standard of certification lies in the establishment, operation, monitoring, review, maintenance, and improvement of the information security management system, in addition to raising the level of security awareness of the staff.
He added that the auditing process is done in two phases. The irst phase is the comprehensive review of all documents relating to information security and information risk, including the statement of applicability and the risk treatment plan. The second phase involved a detailed review and monitoring of its effectiveness and implementation.
KFMC continues to employ technology in the interest of patients through provision ofadvance health services, a high level of safety and maintaining confidentiality of patient information. KFMC is committed to standards and international standards in all areas, in addition to achieving its mission in the advancement of health services in the Kingdom, including the security of health information.
Engineer Khalid ALSalama emphasized that KFMC looks for excellence in providing advanced technology for patients. Therefore, automation systems and procedures need to ensure that patient information is available in a secure manner to the health staff doctors, nurses, technicians, pharmacists and administrators as well as senior management.
Mariam AlMutairi, Information Security Manager, indicated that KFMC established the infrastructure for information security late last year and these efforts culminated with obtaining the ISO 27001 certificate. Al-Mutairi pointed out that the area of health services is going through a real technology revolution in the world, which reflected positively on the quality of service provided to patients. This revolution introduced new challenges in the field of information security and confidentiality of patient information, pointing out that the city obtain a certificate of ISO 27001 will be the beginning of the road to promote information security health and protection of privacy in the region and encourage the other health facilities to adopt this approach.
Sunday, November 8- 2009 @ 9:48 UAE local time (GMT+4) Replication or redistribution in whole or in part is expressly prohibited without the prior written consent of Mediaquest FZ LLC.