摘要
本文整体分析医院数据安全现状和面临的挑战,分析数据安全相关政策法规要求以及医院业务场景,重点围绕医院的组织建设、制度流程、技术防护、运营管控和监管审计等内容,针对性设计医院数据安全治理框架。基于本框架,本院加强了组织管理,梳理了数据资产,探索了持续改善的闭环数据安全治理路径。同时,深入讨论并思考医院数据安全治理策略,从行业顶层设计等方面进一步落实医院数据安全合规管理,推动健康医疗行业安全高质量发展。
This paper analyzes the current situation and challenges of hospital data security as a whole,studies the relevant policies and regulations of data security and hospital business scenarios. The hospital data security governance framework is designed specifically around the organizational construction, system process, technical protection, operation control and regulatory audit of the hospital. Based on this framework,our hospital has strengthened the organization and management, sorted out the data assets, and explored a closed-loop data security governance path for continuous improvement. It brought about in-depth discussion on hospital data security governance, to further implement security compliance from the top-level design industry, and promote the safe and high-quality development of the health industry.
作者
郭敬鹏
冯国斌
刘艳亭
李功靖
田旭
GUO Jingpeng;FENG Guobin;LIU Yanting;LI Gongjing;TIAN Xu(Beijing Tongren Hospital,Capital Medical University,Beijing 100730,China)
出处
《中国卫生信息管理杂志》
2022年第6期879-883,共5页
Chinese Journal of Health Informatics and Management
关键词
医院数据
安全治理
数据安全
hospital care data
security governance
data security
