Objective To determine whether patient data within the public health system is safe and secure.
Issues Public sector agencies, including those in the health sector, increasingly rely on information and communications technology (ICT) to deliver services to the public. However, as with other organisations, public hospitals’ ICT environments are being threatened more frequently by cyber attacks of increasing scale and sophistication. Successful cyber attacks can have severe consequences for the health sector, such as impacting its ability to treat patients.
This audit will examine whether public health services’ ICT security policies, procedures and practices effectively protect patient data.
Proposed agencies DHHS, Royal Children’s Hospital, Health Technology Solutions Victoria, Barwon Health and Royal Victorian Eye and Ear Hospital.