IT organizations in the healthcare industry are being asked to make increasingly complex and subtle decisions. IT everywhere is being asked to do more and be responsible for more. Enabling the business to meaningfully engage IT, and creating a way that provides the businesses with the right information to make decisions is key to the perceived and actual success of an IT department. The road to engaging all parts of the business is difficult, but it has also been shown to be a hallmark of successful organizations.
In the post-9/11 world, disparate government agencies took flack for their need-to-know data sharing policies. To improve intelligence efforts, a need-to-share policy was employed, ideally resulting in more efficient communication and flow of inter-agency information. A need-to-share policy, however, also increases the risk of unauthorized access due to an increased threat-source population. Is opening up access and consequent weaker access-control a worthy security trade-off? Let us know what you think!