| In recent years,with the continuous development and wide application of information technology such as big data,mobile Internet and artificial intelligence,the revolutionary influence of information technology on promoting the inheritance and innovation of Traditional Chinese Medicine has become increasingly obvious.The informatization of Traditional Chinese Medicine is an important indicator of the development level of Traditional Chinese Medicine,and it is also the technical support for the sustainable development of Traditional Chinese Medicine.As the backbone of Traditional Chinese Medicine,TCM hospitals have strengthened the construction of information technology and played an important role in promoting the development of TCM hospitals.At the same time,this also puts higher requirements on hospital information security.However,at present,TCM hospitals still have difficulties and problems in terms of information security,such as inadequate systems,lack of information security talents,and shortage of information security funds,which pose a threat to the normal operation of TCM hospitals.Therefore,how to strengthen the information security construction of TCM hospitals has become the top priority in promoting information technology construction of TCM hospitals.1 ObjectiveThis article is based on the policy research project "Information Security Supervision and Inspection of Traditional Chinese Medicine Industry" commissioned by the State Administration of Traditional Chinese Medicine.It also chooses to conduct pre-investigation on the status of information security of Traditional Chinese Medical institutions in Beijing.On the basis of summing up experience,the national information security supervision and inspection of the Traditional Chinese Medicine industry will be carried out.Industry information security supervision and inspection.This survey aims to understand the status of information security in public hospitals(including integrated Chinese and Western medicine hospitals and national medical hospitals)in grade two and above in Beijing.The paper analyzes the status quo of information security in TCM hospital from the aspects of the establishment of information security institution,management system construction,infrastructure and application system security,and finds the main problems and causes of current information security of TCM hospitals in Beijing,and puts forward targeted countermeasures and advice.It provides reference for information security construction of TCM hospitals,provides reference for relevant decision-making of Traditional Chinese Medicine management departments,and it provides reference meaning for the country to carry out the"inspection and inspection of information security of Traditional Chinese Medicine industry".2 MethodsThis paper selects 39 public TCM hospitals in Beijing area as the research object,and the application research methods are as follows:(1)Literature research.This paper analyzes the relevant literature of information security and network security(hereinafter referred to as "information security")of TCM hospitals to help understand the research status of information security and information security of TCM hospitals at domestic and foreign hospital,and understand national information security and information security level protection systems.And understand and master the basic theoretical knowledge related to hospital information construction.The above lays the foundation for the related research on information security of TCM hospitals.(2)Questionnaire method.The design of the questionnaire refers to the relevant documents issued by the State,such as the "Network Security Law of the People's Republic of China","Basic Requirements for the Protection of Information Technology Information Security Levels",and "Basic Functional Specifications of Information Systems of Traditional Chinese Medicine Hospitals",and prepare the questionnaire in combination with the actual situation of the TCM hospitals.The questionnaire was compiled to conduct a questionnaire survey on the status of information security of public TCM hospitals above the second level in Beijing.The relevant departments of the investigated TCM hospitals fill in the truth according to their actual conditions,which provides material support for the papers.(3)Expert consultation method.This study repeatedly consults experts in information and information security on the design of questionnaires,information security problems and countermeasures,listens to their opinions and suggestions,and combines the actual situation of information security of TCM hospitals to highlight the characteristics of TCM hospitals.The questionnaire was formed as a technical support for the investigation report of TCM hospitals.(4)Statistical analysis method.Statistical analysis was carried out on the basic situation of the 39 public TCM hospitals surveyed.The survey includes the technical application and management of information security.The statistical analysis methods such as descriptive statistics and chi-square test(x2 test)were used to analyze the surveyed data.(5)Contrast analysis method.Comparing the status quo of information security between the central TCM hospitals of third-grade in Beijing and the third-grade TCM hospitals in Beijing,the third-level TCM hospitals in Beijing and the second-class TCM hospitals.Analyze the problems and deficiencies of information security construction between different TCM hospitals,and propose countermeasures and suggestions for information security construction.3 ResultsAt present,the information security construction of public TCM hospitals of the second level or above in Beijing is in the development stage,and the information security issue has been attached importance to hospitals.Through the investigation of the status quo of information security of 39 public TCM hospitals(including TCM hospitals,integrated Chinese and Western medicine hospitals and ethnic medical hospitals)in grade two and above in Beijing,the main research results are as follows:(1)Degree of concern to the hospital information security.The hospital attaches importance to information security work.28 TCM hospitals set up special information security management functions,38 TCM hospitals set up information security leading groups,25 TCM hospitals established information security working groups,32 TCM hospitals have carried out grade protection and grading work,and 31 TCM hospitals have completed Grade protection records and assessment work,only 8 TCM hospitals have not completed the level protection filing and evaluation work.(2)The investment of TCM hospitals information security.In the past three years,36 TCM hospitals have invested in information security equipment.The investment of 11 TCM hospitals is between 5 and 1 million yuan.Some hospitals,especially the second-level TCM hospitals,need to improve their investment in information security equipment.In terms of information security funding sources,the information security funding of 36 TCM hospitals came from the self-raised funds of the hospital,and 23 TCM hospitals also received funding for superior information security.In terms of information security budget,32 TCM hospitals have arranged information security budgets,and there are a few TCM hospitals that have not arranged special information security budgets,random inputs or insufficient quantities.(3)The infrastructure construction of TCM hospitals information security.In terms of computer room safety,24 TCM hospitals have defined the computer room safety level.Most hospitals have adopted many safety measures for the computer room,but only 10 TCM hospital rooms have anti-magnetic field interference measures.And different levels of TCM hospitals have significant differences in the computer room access control system,equipped with uninterruptible power supply and other measures.In terms of server security,most TCM hospitals took corresponding security measures on the server,but one of the hospitals surveyed did not take security measures against the server.In terms of terminal equipment security,39 TCM hospitals have taken security measures for PC-side devices,but the application rate of monitoring user behavior and device-related information is slightly lower,and different levels of TCM hospitals are shielding external storage devices.There are significant differences on the USB port.In terms of data security,37 TCM hospitals have taken necessary security defense measures,but the application rate of access security related measures for databases is still relatively low.In terms of network security,all TCM hospitals surveyed have adopted security measures,but they still stay at the general superficial level,and the application rate of measures such as intrusion detection,log analysis,vulnerability scanning,and identity authentication security protection is still low.In terms of host operating system and database security,38 TCM hospitals have taken corresponding security measures,but the system image rapid recovery,resource control.identity authentication and other measures have low application rates,and secondary hospitals are preventing malicious code attacks and resources.There is a lack of control and data recovery,and there is an urgent need for improvement.(4)The application system security construction of TCM hospitals.The 39 TCM hospital management information systems investigated,the emergency department registration system,the emergency department fee collection system,the emergency department pharmacy management system,the hospitalization fee system,the drug library management system,and the medical insurance interface system are all covered,which proportion is 100%.However,the system application rate for remote consultation platform,suitable technology promotion platform,and hospital human resources recruitment platform is still relatively low.The clinical information system application of TCM hospitals reached 100%in the application of emergency doctor workstations,resident workstations and hospital nurse workstations;followed by medical image storage and transmission systems and laboratory information systems,accounting for 92.31%;The application of TCM diagnosis and treatment information system and TCM treatment information system is still relatively small,accounting for only 15.38%(6)and 23.08%(9).The clinical information system of TCM characteristics needs further improvement and application.(5)Construction and implementation of TCM hospitals information security system.At present,the construction of relevant systems for information security management in most TCM hospitals is better,but it still needs to be further strengthened in implementation.If 15.91%of TCM hospitals have information security related systems,some systems are not strictly enforced,or The executive ability is generally weak;a few TCM hospitals are even lacking some basic information management systems.For example,there is no information asset management system in a TCM hospital.Some TCM hospitals have related systems,but the investigation found that these systems are not standardized,or the actual requirements are far away and it is difficult to implement.(6)Emergency response situation of TCM hospitals information security.37 TCM hospitals established emergency response organizations,of which 35 hospitals have clearly defined the responsibilities,division of labor and accountability of members within the organization.38 TCM hospitals have formulated information security emergency plans,of which 27 hospitals have relatively complete emergency plans,and can formulate corresponding emergency plans according to different events.In terms of emergency safety measures,37 TCM hospitals conducted emergency drills,and the application rate of internal technical support was relatively low,accounting for 53.85%of the total number of surveyed hospitals.(7)Information security staffing and training of TCM hospitals.From the professional situation of employees engaged in information technology or information management in the information technology department,80.94%of the employees are information-related majors;from the perspective of the information management or technical staffs academic structure,the highest percentage of undergraduate personnel is 66.55%,followed by college degree,with a ratio of 20.14%,low academic qualifications;from the aspect of information management or technical staffs professional title,60.43%of employees' titles are mainly concentrated at the primary level and below;from the aspect of information management or technical staff age distribution,73.38%of employees are aged 31-49 years old.Between the number of full-time or part-time information security personnel in the hospital,the number of full-time or part-time information security personnel in 24 TCM hospitals is concentrated in 1-3,and 6 TCM hospitals do not have full-time or part-time information security personnel.In addition,the information security training conducted by employees of TCM hospitals was investigated.33 TCM hospitals conducted information security training for employees between 1-2 times a year,and some hospitals did not carry out training.(8)Comparison of information security status of different levels of TCM hospitals.Comparing and analyzing the information security status of 39 TCM hospitals surveyed,it is concluded that the information security construction of tertiary TCM hospitals is better than that of secondary TCM hospitals.The information security construction of the third-level TCM hospitals directly under the central government is better than that of the municipal third-level TCM hospital.4 ConclusionThrough the investigation of the status quo of information security of 39 public TCM hospitals in grade two and above in Beijing,Overall,it is found that the information security construction of public TCM hospitals in the second-level or above in Beijing has been highly valued by all units and departments,infrastructure construction and information security organization management,capital investment and related professional personnel training,such as information and network security software and hardware.These aspects have achieved good results.It can be said that the information security construction of TCM hospitals is in a period of positive and vigorous development.However,in the process of development,it also faces some difficulties and problems,mainly reflected in the unbalanced development of various TCM hospitals,and the emphasis on information security is different.There is room for further development of information security in TCM hospitals;some TCM hospitals need to further develop information infrastructure safety.Information security systems need to be further improved and implemented;information security funding needs to be further increased,emergency response needs to be further improved,and information security personnel training needs to be further strengthened.Therefore,seven suggestions are proposed to further improve the importance of information security in TCM hospitals,strengthen and improve the construction of information security infrastructure,strengthen information security technology assurance,improve information security management systems,increase investment in information security funds,and develop comprehensive and strict information security emergency plan,vigorously introduce and train information security professionals.In conclusion.strengthening the information security construction of TCM hospitals is one of the important safeguard measures for the development of information technology construction of TCM hospitals,and it is also one of the important indicators to measure the degree of informatization construction of TCM hospitals.The results of this study will provide a reference for the upcoming information security supervision and inspection work of the Traditional Chinese Medicine industry,provide an objective basis for the relevant decision-making of the TCM management department,and will also promote the continuous development of Traditional Chinese Medicine informatization. |
PDF Full Text Request