Situation Critical: Intensive Cybersecurity Care Needed

Lynne Coventry; Elizabeth Sillence; Richard Brown; Dawn Branley-Bell; Pasquale Mari; Caruso Saverio; Alessandra Casaroli; Fabio Rizzoni; Sabina Magalini

doi:10.1007/978-3-031-83072-3_6

Situation Critical: Intensive Cybersecurity Care Needed

Lynne Coventry^*, Elizabeth Sillence, Richard Brown, Dawn Branley-Bell, Pasquale Mari, Caruso Saverio, Alessandra Casaroli, Fabio Rizzoni, Sabina Magalini

^*Corresponding author for this work

Psychology Department

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

3 Downloads (Pure)

Abstract

Healthcare organisations are increasingly targeted by cybercriminals. Such attacks are not just an attack on data but on this critical infrastructure – putting lives at risk. They face multiple challenges in maintaining their cybersecurity, including the technology infrastructure in use, the heterogeneity of healthcare and admin staff and the IT and cybersecurity skills within the organization. This paper focuses on healthcare and admin staff within a single hospital in Italy. The study sought to understand the differences in perceptions of culture between different staff groups and the overall relationship between these perceptions and behaviours. The methodology consisted of a cultural, behavioural and data use questionnaire, translated into Italian and distributed to doctors, nurses and administrators. Linear regression models suggest that security culture significantly predicts how important and achievable staff perceive cybersecurity behaviours to be. Further analyses found significant differences between the doctors and other staff groups. Doctors reported a significantly more negative perception of cybersecurity culture. They also perceived cybersecurity behaviours to be significantly less important and less achievable than the other two groups. Doctors were also most likely to copy and access patient data outside of the institution, albeit for benign or patient centered reasons. Overall, in terms of cybersecurity, doctors were the least compliant staff group – albeit with the best of intentions (i.e., focus upon patient care). These data, alongside other research, suggest that healthcare staff focus on delivering patient care and see cybersecurity as interfering with, rather than facilitating, their clinical practice. There is a need for change to ensure that cybersecurity measures are appropriate, work within the clinical workflow and staff accept cybersecurity as crucial to protecting patients.

Original language	English
Title of host publication	Socio-Technical Aspects in Security - 12th International Workshop, STAST 2022, Revised Selected Papers
Editors	Maryam Mehrnezhad, Simon Parkin
Place of Publication	Cham, Switzerland
Publisher	Springer
Pages	93-112
Number of pages	20
ISBN (Electronic)	9783031830723
ISBN (Print)	9783031830716
DOIs	https://doi.org/10.1007/978-3-031-83072-3_6
Publication status	Published - 13 Mar 2025
Event	12th International Workshop on Socio-Technical Aspects in Security and Trust, STAST 2022 - Copenhagen, Denmark Duration: 29 Sept 2022 → 29 Sept 2022

Publication series

Name	Lecture Notes in Computer Science
Volume	13855 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	12th International Workshop on Socio-Technical Aspects in Security and Trust, STAST 2022
Country/Territory	Denmark
City	Copenhagen
Period	29/09/22 → 29/09/22

Keywords

behaviours
culture
cybersecurity
perception

Access to Document

10.1007/978-3-031-83072-3_6Licence: CC BY

978-3-031-83072-3_6Final published version, 1.07 MBLicence: CC BY

Cite this

Coventry, L., Sillence, E., Brown, R., Branley-Bell, D., Mari, P., Saverio, C., Casaroli, A., Rizzoni, F., & Magalini, S. (2025). Situation Critical: Intensive Cybersecurity Care Needed. In M. Mehrnezhad, & S. Parkin (Eds.), Socio-Technical Aspects in Security - 12th International Workshop, STAST 2022, Revised Selected Papers (pp. 93-112). (Lecture Notes in Computer Science; Vol. 13855 LNCS). Springer. https://doi.org/10.1007/978-3-031-83072-3_6

@inproceedings{0ee314bfc6094baea5a3d9133c3dc86f,

title = "Situation Critical: Intensive Cybersecurity Care Needed",

abstract = "Healthcare organisations are increasingly targeted by cybercriminals. Such attacks are not just an attack on data but on this critical infrastructure – putting lives at risk. They face multiple challenges in maintaining their cybersecurity, including the technology infrastructure in use, the heterogeneity of healthcare and admin staff and the IT and cybersecurity skills within the organization. This paper focuses on healthcare and admin staff within a single hospital in Italy. The study sought to understand the differences in perceptions of culture between different staff groups and the overall relationship between these perceptions and behaviours. The methodology consisted of a cultural, behavioural and data use questionnaire, translated into Italian and distributed to doctors, nurses and administrators. Linear regression models suggest that security culture significantly predicts how important and achievable staff perceive cybersecurity behaviours to be. Further analyses found significant differences between the doctors and other staff groups. Doctors reported a significantly more negative perception of cybersecurity culture. They also perceived cybersecurity behaviours to be significantly less important and less achievable than the other two groups. Doctors were also most likely to copy and access patient data outside of the institution, albeit for benign or patient centered reasons. Overall, in terms of cybersecurity, doctors were the least compliant staff group – albeit with the best of intentions (i.e., focus upon patient care). These data, alongside other research, suggest that healthcare staff focus on delivering patient care and see cybersecurity as interfering with, rather than facilitating, their clinical practice. There is a need for change to ensure that cybersecurity measures are appropriate, work within the clinical workflow and staff accept cybersecurity as crucial to protecting patients.",

keywords = "behaviours, culture, cybersecurity, perception",

author = "Lynne Coventry and Elizabeth Sillence and Richard Brown and Dawn Branley-Bell and Pasquale Mari and Caruso Saverio and Alessandra Casaroli and Fabio Rizzoni and Sabina Magalini",

year = "2025",

month = mar,

day = "13",

doi = "10.1007/978-3-031-83072-3_6",

language = "English",

isbn = "9783031830716",

series = "Lecture Notes in Computer Science",

publisher = "Springer",

pages = "93--112",

editor = "Maryam Mehrnezhad and Simon Parkin",

booktitle = "Socio-Technical Aspects in Security - 12th International Workshop, STAST 2022, Revised Selected Papers",

address = "Germany",

note = "12th International Workshop on Socio-Technical Aspects in Security and Trust, STAST 2022 ; Conference date: 29-09-2022 Through 29-09-2022",

}

Coventry, L, Sillence, E , Brown, R , Branley-Bell, D, Mari, P, Saverio, C, Casaroli, A, Rizzoni, F & Magalini, S 2025, Situation Critical: Intensive Cybersecurity Care Needed. in M Mehrnezhad & S Parkin (eds), Socio-Technical Aspects in Security - 12th International Workshop, STAST 2022, Revised Selected Papers. Lecture Notes in Computer Science, vol. 13855 LNCS, Springer, Cham, Switzerland, pp. 93-112, 12th International Workshop on Socio-Technical Aspects in Security and Trust, STAST 2022, Copenhagen, Denmark, 29/09/22. https://doi.org/10.1007/978-3-031-83072-3_6

Situation Critical: Intensive Cybersecurity Care Needed. / Coventry, Lynne; Sillence, Elizabeth ; Brown, Richard et al.
Socio-Technical Aspects in Security - 12th International Workshop, STAST 2022, Revised Selected Papers. ed. / Maryam Mehrnezhad; Simon Parkin. Cham, Switzerland: Springer, 2025. p. 93-112 (Lecture Notes in Computer Science; Vol. 13855 LNCS).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Situation Critical

T2 - 12th International Workshop on Socio-Technical Aspects in Security and Trust, STAST 2022

AU - Coventry, Lynne

AU - Sillence, Elizabeth

AU - Brown, Richard

AU - Branley-Bell, Dawn

AU - Mari, Pasquale

AU - Saverio, Caruso

AU - Casaroli, Alessandra

AU - Rizzoni, Fabio

AU - Magalini, Sabina

PY - 2025/3/13

Y1 - 2025/3/13

N2 - Healthcare organisations are increasingly targeted by cybercriminals. Such attacks are not just an attack on data but on this critical infrastructure – putting lives at risk. They face multiple challenges in maintaining their cybersecurity, including the technology infrastructure in use, the heterogeneity of healthcare and admin staff and the IT and cybersecurity skills within the organization. This paper focuses on healthcare and admin staff within a single hospital in Italy. The study sought to understand the differences in perceptions of culture between different staff groups and the overall relationship between these perceptions and behaviours. The methodology consisted of a cultural, behavioural and data use questionnaire, translated into Italian and distributed to doctors, nurses and administrators. Linear regression models suggest that security culture significantly predicts how important and achievable staff perceive cybersecurity behaviours to be. Further analyses found significant differences between the doctors and other staff groups. Doctors reported a significantly more negative perception of cybersecurity culture. They also perceived cybersecurity behaviours to be significantly less important and less achievable than the other two groups. Doctors were also most likely to copy and access patient data outside of the institution, albeit for benign or patient centered reasons. Overall, in terms of cybersecurity, doctors were the least compliant staff group – albeit with the best of intentions (i.e., focus upon patient care). These data, alongside other research, suggest that healthcare staff focus on delivering patient care and see cybersecurity as interfering with, rather than facilitating, their clinical practice. There is a need for change to ensure that cybersecurity measures are appropriate, work within the clinical workflow and staff accept cybersecurity as crucial to protecting patients.

AB - Healthcare organisations are increasingly targeted by cybercriminals. Such attacks are not just an attack on data but on this critical infrastructure – putting lives at risk. They face multiple challenges in maintaining their cybersecurity, including the technology infrastructure in use, the heterogeneity of healthcare and admin staff and the IT and cybersecurity skills within the organization. This paper focuses on healthcare and admin staff within a single hospital in Italy. The study sought to understand the differences in perceptions of culture between different staff groups and the overall relationship between these perceptions and behaviours. The methodology consisted of a cultural, behavioural and data use questionnaire, translated into Italian and distributed to doctors, nurses and administrators. Linear regression models suggest that security culture significantly predicts how important and achievable staff perceive cybersecurity behaviours to be. Further analyses found significant differences between the doctors and other staff groups. Doctors reported a significantly more negative perception of cybersecurity culture. They also perceived cybersecurity behaviours to be significantly less important and less achievable than the other two groups. Doctors were also most likely to copy and access patient data outside of the institution, albeit for benign or patient centered reasons. Overall, in terms of cybersecurity, doctors were the least compliant staff group – albeit with the best of intentions (i.e., focus upon patient care). These data, alongside other research, suggest that healthcare staff focus on delivering patient care and see cybersecurity as interfering with, rather than facilitating, their clinical practice. There is a need for change to ensure that cybersecurity measures are appropriate, work within the clinical workflow and staff accept cybersecurity as crucial to protecting patients.

KW - behaviours

KW - culture

KW - cybersecurity

KW - perception

UR - http://www.scopus.com/inward/record.url?scp=105001426996&partnerID=8YFLogxK

U2 - 10.1007/978-3-031-83072-3_6

DO - 10.1007/978-3-031-83072-3_6

M3 - Conference contribution

AN - SCOPUS:105001426996

SN - 9783031830716

T3 - Lecture Notes in Computer Science

SP - 93

EP - 112

BT - Socio-Technical Aspects in Security - 12th International Workshop, STAST 2022, Revised Selected Papers

A2 - Mehrnezhad, Maryam

A2 - Parkin, Simon

PB - Springer

CY - Cham, Switzerland

Y2 - 29 September 2022 through 29 September 2022

ER -

Coventry L, Sillence E , Brown R , Branley-Bell D, Mari P, Saverio C et al. Situation Critical: Intensive Cybersecurity Care Needed. In Mehrnezhad M, Parkin S, editors, Socio-Technical Aspects in Security - 12th International Workshop, STAST 2022, Revised Selected Papers. Cham, Switzerland: Springer. 2025. p. 93-112. (Lecture Notes in Computer Science). doi: 10.1007/978-3-031-83072-3_6

Situation Critical: Intensive Cybersecurity Care Needed

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Cite this