Normative regulation of the activities of management personnel on information security in the healthcare sector

• Аlexey A. Gavrishev

  Аlexey A. Gavrishev. Moscow State Linguistic University. Moscow. Russia

Abstract. Based on the conducted research and data from various sources, this article suggests possible measures to improve the regulatory framework governing the work of management personnel on information security (IS) in the healthcare sector. The analysis revealed that the current regulatory framework governing the activities of management personnel on IS in domestic healthcare is based on federal laws,
decrees of the President of the Russian Federation and resolutions of the Government of the Russian Federation. However, the existing legal acts in this area do not contain specific provisions that take into account the specifics of the healthcare sector. It emphasizes the need to detail these issues in the legal acts of the Ministry of Health of the Russian Federation and other sectoral bylaws. Taking into account the re-
quirements of legislation and the analysis of various sources, simplified options for making changes to some sectoral regulations concerning the regulation of management personnel on IS in healthcare are proposed. Undoubtedly, the presented list of possible improvements to the regulatory framework governing the work of management personnel on IS in healthcare is not completely exhaustive. However, the authors be-
lieve that the integrated application of the proposed measures may contribute to improving the situation in this area in the future. The conclusions and recommendations obtained can be useful to experts involved in the development of qualification requirements for management personnel on IS in the healthcare system, as well as to heads of medical organizations and specialists on IS working in these institutions.
Keywords: management personnel, information security, healthcare, normative regulation, improvement.