The paper introduces the changes of the new standard requirements of classified protection 2.0. Taking Anhui NO.2 Provincial People's Hospital as an example, it expounds the problems existing in the information security of the hospital and puts forward countermeasures, including the overall security planning, organization and management system, system building, specific protection measures, etc., which can help reduce the security risks.