Professional Documents
Culture Documents
Form 2 Information Management System Assessment and Needs Analysis (IMSANA) Tool
Form 2 Information Management System Assessment and Needs Analysis (IMSANA) Tool
A. INTRODUCTION
The Information Management System Assessment and Needs Analysis (IMSANA) is a self-assessment
that aims to track the progress of integration by the province/highly urbanized city (HUC)/independent
component city (ICC) for the Province-wide and City-wide Health System (P/CWHS) Characteristic on
Info1: Information Management System (Info1). Specifically, this Assessment is intended to:
1. Describe the state of IMS governance, strategy and investments by the Provincial/City Health Board
(P/CHB), through the Provincial/City Health Office (P/CHO), within the P/CWHS;
2. Determine the progress of implementation of all IMS works across all health facilities/offices within
the P/CWHS, including electronic medical records and telemedicine, among others;
3. Identify existing information and communications technology (ICT) capabilities, services, and
resources being used to manage health and health-related data and reports by the P/CHB, through
the P/CHO, and all health facilities/offices within its jurisdiction;
4. Update existing benchmark and standards on IMS of the P/CWHS; and
5. Provide inputs to the Department of Health (DOH) in determining and evaluating technical
assistance (TA) needs and resources of the P/CWHS.
B. GENERAL INSTRUCTIONS
1. The P/CHB, through the P/CHO, shall facilitate the conduct of the Information Management System
Assessment and Needs Analysis (IMSANA).
2. Upon completion of the IMSANA, the P/CHB, through the P/CHO, shall present the findings in a
narrative summary that is incorporated under the “Situational Analysis” section of their Local
Investment Plan for Health (LIPH) with the accomplished IMSANA tool annexed as supporting
evidence, and submit the approved LIPH to the CHD/MOH-BARMM for validation and analysis.
C. GENERAL INFORMATION
(To be accomplished by the P/CHO)
C.1. Fiscal Year:
(Indicate the fiscal year)
C.2. Province-Wide/City-Wide Health System of: C.3. Region:
(Indicate the name of the Province/ Highly Urbanized City
(HUC)/ Independent Component City (ICC))
C.4. Income Class 1st Class 2nd Class 3rd Class
4th Class 5th Class 6th Class
C.5. Assessment Period: From: To:
(Indicate the specific duration
when the assessment started and
ended)
C.6. Number of M: C.7. Total C.8. Total
Municipalities/Cities: CC: Number of Population:
a. Total number of Barangays: (Indicate the total
municipalities and a. Total population within
component cities within number of the province/
the province barangays
within the HUC/ICC, year, and
province/ its source)
HUC/ICC
b. Total number of M: b. Total
municipalities and CC: number of
component cities that GIDA
committed to integration barangays
within the
province/
HUC/ICC
4. Issues and Challenges Encountered relating to Hardware and Other ICT Equipment
Issue/Challenge Recommended Interventions/Technical Assistance
(Note: List down common priority issues and Needed
challenges encountered among health (Note: List down corresponding recommended interventions/technical
facilities/offices within the P/CWHS relating to assistance needed to address identified issues/challenges.)
hardware and other ICT equipment.)
Internet Security
Critical Information
Infrastructure (Infostructure)
Protection
Fill-in Instructions:
1. Examples of security measures are Security Policy/Guideline; Back-up power unit (e.g. UPS, generator); Encryption; Hardware
Firewall; Software Firewall; Subscription to a Security Service (e.g. antivirus software, intrusion alert); Regular ICT Security
Training; Disaster Recovery Plan; Digital Signature; Off-site Back-up; Physically Restricted Access to Critical ICT Equipment;
Secure Servers; Storage of Back-up Media in localities other than the operating environment.
2. List down all applicable security measures under each Cybersecurity Domain.
3. Information security refers to confidentiality, integrity, availability, authenticity, and non-repudiation of information as an asset
of the P/CWHS, including all its health facilities/offices.
4. Application security refers to the application of controls and measurements to the implemented application systems themselves
(e.g. processes, components, software, and results) to the data (e.g. configuration data, user data, organization data), and to all
technology, processes and stakeholders involved in each application’s life cycle to manage deployment and use risks.
5. Network security covers design, implementation, and operation of implemented networks in health facilities/offices within the
P/CWHS.
6. Internet security refers to the protection of internet-related services and ICT systems and networks as an extension of network
security, including ensuring reliability and availability of internet services.
7. CII protection refers to the protection and securement of systems and networks that are operated by critical infrastructure
providers (e.g. telecommunications).
2. Issues and Challenges Encountered relating to Security, Disaster Recovery and Back-up
Issue/Challenge Recommended Interventions/Technical Assistance
(Note: List down common priority issues and Needed
challenges encountered among health (Note: List down corresponding recommended interventions/technical
facilities/offices within the P/CWHS relating to assistance needed to address identified issues/challenges)
security, disaster recovery and back-up
implementation)
B. Hospitals
1. Apex Hospital/s
2. Level 3 Hospital
3. Level 2 Hospital
4. Level 1 Hospital
C. Infirmary
Infirmary
Cybersecurity
Criterion: All processing of health and health-related data through implemented IMS software, application systems, information
systems, and databases, including all application programming interfaces (APIs) and other technical processes are secured.
Data/Information/Knowledge Management
Criterion: Conformance with technical and data standards for processing of health and health-related data, and compliance with
submission of priority minimum data and reportorial requirements at the local and national levels.
3. Issues and Challenges Encountered relating to Human Resources for Health ICT
Issue/Challenge Recommended Interventions/Technical Assistance Needed
(Note: List down common priority issues and (Note: List down corresponding recommended interventions/technical
challenges encountered among health assistance needed to address identified issues/challenges)
facilities/offices within the P/CWHS relating to
human resources for health ICT)
F. SIGNATORIES
Accomplished by: Approved by:
(Designated Provincial/City LHS ML Info1 Technical Coordinator) (Provincial/ City Health Officer)
Signature: Signature:
Name: Name:
Designation/ Designation/
Position: Position:
Date: Date: