The Strategic Role of Hospital Management in Ensuring the Security of Health Information and Preventing Patient Data Leakage: A Case Study at Agung Mulia Hospital

Authors

  • Agung Suhirman Universitas Wisnuwardhana Malang
  • Muharyati Muharyati Universitas Wisnuwardhana Malang
  • Latifah Indriasari Utami Universitas Wisnuwardhana Malang
  • Fajar Hadi Wijayanto Universitas Wisnuwardhana Malang
  • Marsudi Dedi Putra Universitas Wisnuwardhana Malang

DOI:

https://doi.org/10.59525/jess.1641

Keywords:

Hospital Management; Information Security; Data Breach

Abstract

This study aims to analyze in depth the strategic role of hospital management at RSU Agung Mulia in formulating policies, implementing cyber protection systems, and overcoming operational constraints to ensure health information security and prevent patient data breaches. A qualitative approach with a descriptive research type was applied to uncover facts directly in the field through a natural setting. The primary data collection technique was conducted through in-depth interviews with three key informants, namely the Director, the Head of the Information Technology Unit, and the Head of the Medical Records Department, which was further strengthened by objective direct observation methods. The data analysis procedure followed an interactive model encompassing data reduction, data display, and conclusion drawing stages. The results of the study indicate that management policies are focused on formulating strict internal regulations, restricting medical data access rights based on job roles, and mandating the signing of staff integrity pacts. The main obstacles faced by the institution include operational budget constraints, outdated hardware conditions, and low digital literacy among administrative staff, which trigger human errors in the service area. Managerial efforts to circumvent these limitations are realized through a financial cluster strategy with hardware leasing options, optimizing operating systems using open-source software, and conducting periodic phishing attack simulations. The implementation of a reward and punishment system combined with the appointment of cyber pioneers has proven successful in altering staff behavior to become more disciplined and increasing operational compliance in safeguarding patient data confidentiality.

References

Azizah, N. L. N., & Setiawan, M. V. (2017). Pengelolaan Informasi Kesehatan secara Terintegrasi untuk Memaksimalkan Layanan Kesehatan kepada Pasien di Rumah Sakit. Indonesian Journal of Pharmaceutical Science and Technology, 4(3).

Budiman, A., Isa, M., & Soekiswati, S. (2025). Analisis Risiko Dan Tindakan Pencegahan Kebocoran Data Rekam Medis Elektronik Pasien Di RS P Surakarta. Ranah Research : Journal of Multidisciplinary Research and Development, 7(3).

Dewi, M. P., & Haksama, S. (2025). Pengaruh Manajemen Strategis terhadap Kualitas Pelayanan Pasien di Rumah Sakit. PREPOTIF : Jurnal Kesehatan Masyarakat, 9(3).

Firdaus, D. A. (2025). Analisis Keamanan Informasi Rumah Sakit Menggunakan COBIT 2019 dengan Fokus Domain APO13: Systematic Literature Review. JATI (Jurnal Mahasiswa Teknik Informatika), 9(4).

Marbun, N. C. P. (2020). Strategi Pencegahan dan Pengendalian Dalam Upaya Pemutusan Rantai Infeksi di Rumah Sakit. Jurnal Sain. https://doi.org/10.31219/osf.io/a248z

Permatasari, P. (2024). Optimalisasi Upaya Pengelolaan Sistem Informasi Layanan Kesehatan di Rumah Sakit. JIK JURNAL ILMU KESEHATAN, 8(2).

Pramesti, D. P. A., Ayuningtyas, D., & Verdi, R. (2024). Keamanan dan Kerahasiaan Data Medis Pasien dalam Implementasi Rekam Medis Elektronik: Tinjauan Sistematis. PREPOTIF : JURNAL KESEHATAN MASYARAKAT, 8(3).

Pratama, I. F., & Purwanto, E. (2023). Sistem Informasi Manajemen Rumah Sakit Dalam Meningkatkan Efisiensi. COMSERVA : Jurnal Penelitian dan Pengabdian Masyarakat, 3(07).

Pujihastuti, A. (2021). Penerapan Sistem Informasi Manajemen Dalam Mendukung Pengambilan Keputusan Manajemen Rumah Sakit. Jurnal Manajemen Informasi Kesehatan Indonesia, 9(2).

Ratnasari, N. D., Ardanti, R. I., Purwadhi, P., & Widjaja, Y. R. (2024). Keamanan dan Kerahasiaan Data Medis Pasien dalam Implementasi Rekam Medis Elektronik: Tinjauan Sistematis. Jurnal Kesehatan Tambusai, 5(4).

Tampubolon, E. T. F., Putera, A. P., & Huda, M. K. (2024). Pertanggungjawaban Hukum Rumah Sakit Terkait Kebocoran Data Pribadi Pasien Berdasarkan Peraturan Perundang-Undangan. Syntax Idea, 6(3).

Utami, D. T., Muskitta, F. M., Fardiyani, F., Widjaja, Y. R., & Sanjaya, U. A. R. (2024). Analisis Hukum Manajemen Strategik Keselamatan Pasien di Rumah Sakit: Analysis of Legal Strategies for Patient Safety Management in Hospitals. Jurnal Kesehatan Indra Husada, 12(2).

Downloads

Published

2026-06-02

How to Cite

Suhirman, A., Muharyati, M., Utami, L. I., Wijayanto, F. H., & Putra, M. D. (2026). The Strategic Role of Hospital Management in Ensuring the Security of Health Information and Preventing Patient Data Leakage: A Case Study at Agung Mulia Hospital. Journal of Economics and Social Sciences (JESS), 5(1), 403–410. https://doi.org/10.59525/jess.1641

Issue

Vol. 5 No. 1 (2026)

Section

Articles

License

Copyright (c) 2026 Agung Suhirman, Muharyati Muharyati, Latifah Indriasari Utami, Fajar Hadi Wijayanto, Marsudi Dedi Putra

Creative Commons License

This work is licensed under a Creative Commons Attribution 4.0 International License.

Similar Articles

1 2 3 4 5 6 7 8 9 10 > >> 

You may also start an advanced similarity search for this article.