The role of cybersecurity in hospital procurement processes
R.W. van Baren (TU Delft - Technology, Policy and Management)
Michel Van Van Eeten – Mentor (TU Delft - Organisation & Governance)
K. Labunets – Coach (TU Delft - Organisation & Governance)
I. R. Van de Poel – Graduation committee member (TU Delft - Ethics & Philosophy of Technology)
More Info
expand_more
Other than for strictly personal use, it is not permitted to download, forward or distribute the text or part of it, without the consent of the author(s) and/or copyright holder(s), unless the work is under an open content license such as Creative Commons.
Abstract
Cybersecurity is important to hospitals and patients alike and is becoming more important as healthcare is experiencing more cybercrime over time. It is the result of complex interactions between actors and their environment during procurement, but research has not yet studied the combination of cybersecurity, healthcare and procurement together. The main research question is: What is the role of cybersecurity in hospital procurement processes and how can that role be analysed across the sector? Nine semi-structured interviews were conducted with hospital cybersecurity experts. Using a combination of a purchase process model and complex decision-making framework and using semi-grounded theory techniques for analysis, five key factors and their interrelations were identified: supplier-hospital relationship, knowledge exchange and retention, alternative purchase processes, cloud transition and conflicting priorities. These factors influence the decision power of hospitals and their internal departments before and after signing off on a purchase. Based on the results, a complementary survey was developed to scale this research across Dutch hospitals. This survey serves as a stepping stonet for future research efforts.