Publication: Managing Compliance and Risk Management in Health Care Settings
| dc.contributor.advisor | Sarmiento, Alvaro Arenas | |
| dc.contributor.author | Rivera, Darwin Michael | |
| dc.contributor.ror | https://ror.org/02jjdwm75 | |
| dc.date.accessioned | 2025-09-01T12:15:02Z | |
| dc.date.available | 2025-09-01T12:15:02Z | |
| dc.date.issued | 2025 | |
| dc.description.abstract | This dissertation investigates how organizations operating in highly regulated environments manage the concurrent demands of regulatory compliance and information security risk management. Drawing on Oliver’s (1991) theory of strategic responses to institutional pressures, the study examines how organizations respond to overlapping external and internal pressures—particularly under resource constraints. Guided by two central research questions—(1) How do organizations manage compliance and risk management concurrently? and (2) How do they allocate resources to maximize compliance while minimizing security risks?—the study adopts an integrative approach that bridges the traditionally siloed domains of compliance, risk management, and information security. The research employs a two-part empirical design: a content analysis of compliance policies from 30 healthcare organizations and a case study of a children's hospital implementing a DEA-mandated Electronic Prescription for Controlled Substances (EPCS) system. The findings contribute to theory by identifying a previously undocumented tactic—prioritization—that organizations use to reconcile competing institutional demands. Another theoretical contribution is the development of a process model and a set of propositions that illustrate how organizations operating in highly regulated environments navigate the dual imperatives of compliance and risk management. By linking policy artifacts with real-world organizational behavior, this dissertation offers both scholarly and practical insights into how organizations navigate institutional complexity, enhance compliance maturity, and align security and regulatory needs. | |
| dc.description.peerreviewed | yes | |
| dc.description.status | Published | |
| dc.format | application/pdf | |
| dc.identifier.citation | Rivera, D. M. (2025) Managing Compliance and Risk Management in Health Care Settings | |
| dc.identifier.uri | https://hdl.handle.net/20.500.14417/3846 | |
| dc.language.iso | en | |
| dc.page.total | 157 | |
| dc.publication.place | Segovia | |
| dc.publisher | Ie University | |
| dc.relation.entity | IE University | |
| dc.relation.phd | PhD program | |
| dc.relation.school | IE Business School | |
| dc.rights | Attribution-NonCommercial 4.0 International | |
| dc.rights.accessRights | info:eu-repo/semantics/openAccess | |
| dc.rights.uri | https://creativecommons.org/licenses/by-nc/4.0/deed | |
| dc.title | Managing Compliance and Risk Management in Health Care Settings | |
| dc.title.alternative | Gestión del Cumplimiento y Gestión del Riesgo en la Industria del Cuidado de la Salud | |
| dc.type | info:eu-repo/semantics/doctoralThesis | |
| dc.version.type | info:eu-repo/semantics/publishedVersion | |
| dspace.entity.type | Publication |
Files
Original bundle
1 - 1 of 1
No Thumbnail Available
- Name:
- 251033_rivera_publicacion_tesis.pdf
- Size:
- 1000.66 KB
- Format:
- Adobe Portable Document Format
License bundle
1 - 1 of 1
No Thumbnail Available
- Name:
- license.txt
- Size:
- 2.83 KB
- Format:
- Item-specific license agreed to upon submission
- Description: