Taking Xiangtan Central Hospital as an example, the paper point out problems about its information security, detailedly elaborates on measures to better the hospital's information security from the perspectives of security strategies and management mechanism, security management institution and personnel, security building and maintenance management, physical and environmental safety, network and communication security and so on, so as to improve management level.