Abstract
The business continuity plan (BCP) of hospital information systems (HIS) for pandemic influenza A (H1N1) was drawn up in July 2009 at the Medical Information Center of Tokyo Medical University Hospital. Based on this experience, we found it necessary to make sure that departmental information systems have BCPs that correspond to HIS.
We evaluated 11 departmental information systems in which the recovery time objective (RTO) is less than 1 hours, and found that RTO expected to be met in more than half of systems. To implement measures according to BCP phase, it is important to evaluate vulnerabilities. Therefore, we are introducing an evaluation sheet to address system vulnerabilities. This can also be applied to other threats such as earthquakes or terrorism incidents in departmental information systems.
