We noticed you’re not on the correct regional site. Switch to our AMERICAS site for the best experience.
  • HB 174-2003

    Withdrawn A Withdrawn Standard is one, which is removed from sale, and its unique number can no longer be used. The Standard can be withdrawn and not replaced, or it can be withdrawn and replaced by a Standard with a different number.
    Add to Watchlist
    This Standard has been added successfully to your Watchlist
    Please visit My Watchlist to see all standards that you are watching.
    Please log in or to add this standard to your Watchlist.
    We could not add this standard to your Watchlist.
    Please retry or contact support for assistance.
    We could not add this standard to your Watchlist.
    Please retry or contact support for assistance.
    You have already added this standard to your Watchlist.
    Visit My Watchlist to view the full list.

    Information security management - Implementation guide for the health sector

    Available format(s):  Hardcopy, PDF 1 User, PDF 3 Users, PDF 5 Users, PDF 9 Users

    Withdrawn date:  30-06-2017

    Language(s):  English

    Published date:  01-01-2003

    Publisher:  Standards Australia

    Add to Watchlist

    Add To Cart

    Abstract - (Show below) - (Hide below)

    This handbook provides a set of detailed controls unique to the information security requirements of the Australian Health Sector. The guide is based on and interprets AS/NZS ISO/IEC 17799:2001-Information Technology-Code of Practice for Information Security.

    Scope - (Show below) - (Hide below)

    These guidelines provide direction for all health service providers to undertake best practice strategies to secure information. The review and interpretation is based upon the Information Security Management standard AS/NZS 17799. The intention of this Handbook is that it is to be used as a document for the initiation, implementation and maintenance of information security measures within a health business. The focus of this handbook is aimed towards small to medium sized health care providers, and not Information Technology professionals. Therefore the AS/NZS 17799 key control area of Systems Development and Maintenance has not been given its own sub-section. Health care providers who are the custodians of confidential information must ensure that information is effectively protected against improper disclosure, modification and use. This guide outlines effective security management practices to provide confidence in inter-health organisational dealings.

    General Product Information - (Show below) - (Hide below)

    Committee IT-014
    Document Type Handbook
    Publisher Standards Australia
    Status Withdrawn

    History - (Show below) - (Hide below)

    First published as HB 174-2003.

    Standards Referenced By This Book - (Show below) - (Hide below)

    AS/NZS ISO/IEC 17799:2001 Information technology - Code of practice for information security management
    HB 231:2000 Information security risk management guidelines
    HB 228:2001 Guidelines for managing risk in the healthcare sector
    AS/NZS 7799.2:2003 Information security management Specification for information security management systems
    AS/NZS 4360:1999 Risk management
    AS ISO 15489.1-2002 Records management General (Reconfirmed 2013)
    AS ISO 15489.2-2002 Records management Guidelines (Reconfirmed 2013)

    Standards Referencing This Book - (Show below) - (Hide below)

    HB 172.2-2006 Message Usage Model Current Standards
    MP 97-2008 Standards for enterprise-wide clinical information systems
    AS ISO 27799-2011 Information security management in health using ISO/IEC 27002
    MP 96-2008 Standards for enterprise-wide patient administration systems
    AS 4705-2003 Guide to implementation of an electronic medical claim message for simplified billing in Australia
    HB 304-2007 Guide to Australian electronic communication in health care
    • Access your standards online with a subscription


      • Simple online access to standards, technical information and regulations
      • Critical updates of standards and customisable alerts and notifications
      • Multi - user online standards collection: secure, flexibile and cost effective
Need help?
Call us on 131 242, then click here to start a Screen Sharing session
so we can help right away! Learn more