Authors :
Hazel Galas Lampitoc; Dr. Reagan Recafort
Volume/Issue :
Volume 11 - 2026, Issue 2 - February
Google Scholar :
https://tinyurl.com/mdd5etkt
Scribd :
https://tinyurl.com/mw9f3btn
DOI :
https://doi.org/10.38124/ijisrt/26feb554
Note : A published paper may take 4-5 working days from the publication date to appear in PlumX Metrics, Semantic Scholar, and ResearchGate.
Abstract :
Biomedical imaging systems have proven to be relevant for current clinical practice; on the other hand,
increasing complexity has resulted in substantial challenges in system quality, cybersecurity, and regulatory
compliance. This study examines these challenges in a Saudi Arabian clinical context, in addition to presenting
an IT audit framework for integrated imaging systems. The study, underpinning its methodological approach,
using General Systems Theory (GST), used a qualitative case study design with semi-structured interviews,
document reviews, and non-intrusive observations. Thematic analysis yielded four major issues identified:
challenges to the quality/performance of the system, security risks and vulnerabilities involved, compliance
deficiencies and inconsistencies between different components, and the interdependency between imaging
subsystems. Here we highlight a few limitations of traditional IT audit methodologies, which are still unable to
cope with imaging-specific operational and technical realities. Consistent with this demand, the IT audit
framework proposed by this study refers to those four core dimensions: quality assessment, security evaluation,
compliance verification, and subsystem interdependency. It provides healthcare providers with a structured and
practical method for enhancing the reliability, cybersecurity preparedness, and the alignment of the imaging
system with the requirements set by the national and international standards. By focusing on the governance of
biomedical imaging systems, it provides a significant advance in Saudi Arabia’s digital ecosystem transformation
based on evidence.
Keywords :
Biomedical Imaging Systems; PACS; RIS; HIS; IT Audit Framework; Cybersecurity; System Quality; Regulatory Compliance; General Systems Theory; Saudi Arabia; Digital Health; Interoperability; Imaging Informatics.
References :
- Alahmadi, A., & Drew, S. (2020). Cybersecurity challenges in Saudi Arabian healthcare systems:
- A review of threats and mitigation strategies. Journal of Health Informatics in Developing Countries, 14(2), 1–12.
- Altuwaijri, M. M. (2019). E-health in Saudi Arabia: Current trends, challenges, and recommendations. Journal of Infection and Public Health, 12(6), 761–765.
- American College of Radiology. (2021). PACS and imaging informatics: Best practice guidelines. ACR Press.
- Arshad, J., Azad, M. A., & Khan, M. (2021). Security vulnerabilities in medical imaging systems: A systematic review. Computers in Biology and Medicine, 134, 104458.
- COBIT 2019 Framework: Governance and management objectives. (2019). ISACA.
- Health Sector Cybersecurity Framework. (2022). Saudi National Cybersecurity Authority.
- ISO/IEC 27001:2022. (2022). Information security, cybersecurity and privacy protection — Information security management systems — Requirements. International Organization for Standardization.
- Khan, R., & Al‑Sadi, A. (2020). Digital transformation in Saudi healthcare: Opportunities and challenges. International Journal of Medical Informatics, 141, 104241.
- NIST. (2018). Framework for improving critical infrastructure cybersecurity (Version 1.1). National Institute of Standards and Technology.
- Saudi Health Information Exchange Policies (SeHE). (2016). Saudi Ministry of Health.
- Smith, T., & Kessler, R. (2020). IT auditing in healthcare: Ensuring data integrity and system reliability. Health Information Management Journal, 49(3), 145–155.
- Van der Putten, W., & Riley, J. (2019). Medical imaging informatics: Principles and applications. Springer.
- Zhang, Y., & Zhao, L. (2021). Assessing the security posture of PACS and RIS systems in modern hospitals. Journal of Digital Imaging, 34(5), 1200–1212.
Biomedical imaging systems have proven to be relevant for current clinical practice; on the other hand,
increasing complexity has resulted in substantial challenges in system quality, cybersecurity, and regulatory
compliance. This study examines these challenges in a Saudi Arabian clinical context, in addition to presenting
an IT audit framework for integrated imaging systems. The study, underpinning its methodological approach,
using General Systems Theory (GST), used a qualitative case study design with semi-structured interviews,
document reviews, and non-intrusive observations. Thematic analysis yielded four major issues identified:
challenges to the quality/performance of the system, security risks and vulnerabilities involved, compliance
deficiencies and inconsistencies between different components, and the interdependency between imaging
subsystems. Here we highlight a few limitations of traditional IT audit methodologies, which are still unable to
cope with imaging-specific operational and technical realities. Consistent with this demand, the IT audit
framework proposed by this study refers to those four core dimensions: quality assessment, security evaluation,
compliance verification, and subsystem interdependency. It provides healthcare providers with a structured and
practical method for enhancing the reliability, cybersecurity preparedness, and the alignment of the imaging
system with the requirements set by the national and international standards. By focusing on the governance of
biomedical imaging systems, it provides a significant advance in Saudi Arabia’s digital ecosystem transformation
based on evidence.
Keywords :
Biomedical Imaging Systems; PACS; RIS; HIS; IT Audit Framework; Cybersecurity; System Quality; Regulatory Compliance; General Systems Theory; Saudi Arabia; Digital Health; Interoperability; Imaging Informatics.
