Security Audit Center--a suggested model for effective audit strategies in health care informatics.

As dependence upon interorganizational and international health care informatics becomes absolute, and with increased vulnerability of information networks and applications and the cunning sophistication of computer criminals, it becomes imperative to implement tight information systems security to ward off any possible threat to these vital life-dependent information systems. In a rapidly decentralizing environment, the author proposes centralized security control, implemented in a Security Audit Center under the direct supervision of an Information Systems Security Manager who is a high-ranking organization staff member. Of the various components of the Security Audit Center, the most significant is the security audit expert systems which analyze audit data files according to security rules and present a precise status of systems security and realtime suspicion alert of the various breaches and intrusions.