Abstract

Human factors significantly contribute to breaches in healthcare organizations such as a lack of awareness regarding cybersecurity threats. This study aims to evaluate the information security behaviors of healthcare workers and identify key demographic factors that influence them. The demographic factors examined in this study include age, gender, education level, type of profession, and frequently used device to access health information system (HIS). Information security behavior evaluated in this study consists of four dimensions, which are Device Protection, Password Management, Proactive Awareness, and Information Handling. This study employs quantitative methods. Data are collected through online survey from 107 health workers in Indonesia. The data analysis process consists of two stages. The first stage is comparison group analysis using the Chi-square test to define significant factors to studied security behavior, and second stage is multivariate analysis employs binary logistic regression to determine the most impactful variables. The findings show that, among the five characteristics examined, education level had the greatest effect on the information security behavior of healthcare workers in Indonesia. It underlines the necessity of education in sculpting security practices and awareness in an ever-changing digital world. This study recommends that while developing a security training and awareness program, the education level of healthcare workers should be considered to improve healthcare facilities' security posture and decrease data breach risks. As a result, governments and healthcare managers are encouraged to emphasize training programs as a strategic method of improving information security standards in the business.