Page 147 - Hospital Authority Annual Report 2019-2020
P. 147

Appendix 3
                                                                                                         附錄 3



               Terms of Reference                                         職權範圍

               1.   Approve corporate policies and standards for Information   1.   通過醫院管理局(醫管局)的資訊科技 / 資訊
                    Technology / Information Systems;                         系統政策及標準;

               2.   Approve and monitor the overall progress of the implementation of   2.   通過資訊科技 / 資訊系統策略計劃,並監察
                    the Information Technology / Information Systems Strategic Plan;  整體實施進度;

               3.   Approve and monitor the execution of the Information Technology /   3.   通過資訊科技 / 資訊系統的每年工作計劃書,
                    Information Systems Annual Business Plan;                 並監察實施情況;

               4.   Receive recommendations on the priorities for Information   4.   收閱有關資訊科技系統發展及實施的建議重
                    Technology systems development and implementation;        點項目;

               5.   Receive advice from the Information Technology Technical   5.   收閱信息技術諮詢小組委員會的意見;
                    Advisory Subcommittee;

               6.   Receive performance and status reports;               6.   收閱表現及狀況報告;

               7.   Provide periodic progress report to the Hospital Authority Board;   7.   向醫管局大會定期提交工作報告;及
                    and

               8.   Consider matters relating to risk, risk management and risk   8.   審議醫管局資訊科技範疇的相關風險、風險
                    mitigation relevant to Information Technology across Hospital   管理及風險緩減事宜。
                    Authority.





               Focus of Work in 2019-20                                   2019-20 年度工作概況
               In 2019-20, the Committee conducted three meetings. Due to the   在2019-20年度,委員會共舉行三次會議。因應
               COVID-19 outbreak, the Committee transacted business planned for   2019冠狀病毒病疫情,原訂於2020年3月會議上
               a meeting scheduled for March 2020 by circulation. In the year, the   審議的事宜改以傳閱方式處理。年內,委員會審
               Committee discussed and advised various executional strategies   議多項實施策略和執行措施,以支持落實2017至
               and implementation initiatives, in support of the five-year IT Strategy   2022年資訊科技策略(資訊科技策略),當中載列
               2017-2022 (IT Strategy), which laid out key directions to support digital   就支持醫管局服務轉型及提升服務能力而制訂的主
               transformation of HA’s service provision and uplifting its service   要方向。這些策略及措施包括「智能醫院」策略,
               capability. These included the Smart Hospital Strategy for leveraging   以善用科技提升臨床成效、優化病人體驗及提升運
               technology to achieve better clinical outcomes, enhance patient   作效率;「數碼辦公場所」策略,以利用科技提升
               experience and achieve greater operational efficiency; Digital Workplace   工作間生產力、促進員工參與和工作效率;以及
               Strategy for improving workplace productivity, promote staff engagement   「人工智能」策略,以助醫管局應付服務挑戰,並
               and efficiency using technology; and the Artificial Intelligence (AI)   引領醫管局發展和採納合適的人工智能項目。委員
               Strategy for facilitating HA in addressing service challenges, and driving   會亦審議了網絡安全策略框架,以透過標準化、一
               and guiding HA to the appropriate AI adoption approach. The Committee   體化及自動化,提升醫管局的網絡安全。委員會亦
               also deliberated on the Cybersecurity Strategy Framework for enhancing   討論了有關醫管局數據實驗室的工作進展,以及醫
               HA’s cybersecurity through standardisation, integration and automation.   管局作為衞生署技術代理就開發臨床訊息管理系統
               It also discussed progress of work on HA Data Collaboration Lab, and   第二期計劃所提供服務的進展。委員會收閱有關指
               HA’s service provision as technical agent to the Department of Health for   稱醫管局急症室資訊系統外洩病人資料事件及相關
               developing the Clinical Information Management System II Project. The   改善行動計劃的報告,亦備悉醫管局遭受持續網絡
               Committee also received reports on the incident of allegations of leakage   攻擊的事件,以及已採取的應對行動及改善措施。
               of patient data in HA from the Accident and Emergency Information
               System and the action plan for enhancement. A major cyberattack on
               HA’s IT environment was also reported to the Committee, together with
               the remedial actions taken and enhancement measures implemented.






                                                                                                   Appendices  附錄  145
   142   143   144   145   146   147   148   149   150   151   152