ISO 27799 provides guidelines for organizational information security standards and Information Security Management practices which include but are not limited to the selection, implementation and management of controls by taking into consideration the organization’s Information Security risk environments. This standard provides guidelines to support the implementation of information security controls in healthcare organizations based on ISO/IEC 27002.

Benefits of ISO 27799 Information Security Management in Healthcare:

• Understood the implementation of Information Security Controls in healthcare organizations by adhering to the framework and principles of ISO 27799.
• Understood the relationship between the components of Information Security controls, including responsibility, strategy, acquisition, performance, conformance and human behavior.
• Gained the necessary skills to support a healthcare organization in implementing and managing the ongoing Information Security controls based on ISO 27799.
• Acquired the competences to perform periodic risk assessment in a healthcare organization.
• Enhanced your ability to help healthcare organizations to play an active and important role in the protection of personal health data of their patients.
• Gained the necessary knowledge to improve Information Security in healthcare organizations.