Discover how a security health check from BT’s Security Advisory Services helped the South West London Integrated Care Board to better understand their cyber security posture, bring in key health requirements, and identify their strengths and weaknesses.
Discover how a security health check from BT’s Security Advisory Services helped the South West London Integrated Care Board to better understand their cyber security posture, bring in key health requirements, and identify their strengths and weaknesses.
In May 2023, the NHS experienced 1383 attempted cyber attacks per week compared with 797 in May 2022, and it’s reported that around 21 million malicious emails are blocked every month. The sustained rise in attacks over the last few years has prompted trusts to check the health of their cyber security infrastructure and practices.
The volume and severity of attacks have a significant impact on patients, staff and the healthcare system more widely. From doctors being unable to access medical records to missed diagnoses – the level of risk involved with having inadequate security protocols and defences is huge.
South West London Integrated Care Board (SWL ICB), which oversees the NHS services in south west London, wanted to find a unified approach to tackling cyber threats across the integrated care systems (ICS) healthcare facilities.
To help better understand their cyber security posture, bring in key health requirements, and identify their strengths and weaknesses, the SWL ICB partnered with the team here at BT to conduct a security health check.
Consequently, we delivered a plan to enhance SWL ICB’s security strategy.
The SWL ICB wanted a comprehensive, detailed assessment of its cyber maturity and starting point, from both an individual trust and cross-trust perspective.
This would enable them to identify the potential risks, vulnerabilities and gaps in their IT infrastructure, and define clear actions needed to strengthen their defences, reduce operational challenges, and protect sensitive information, such as patient data.
The SWL ICS includes six individual trusts and separate distinct corporate and GP IT estates, each with multiple stakeholders managing different aspects of cyber security, strategy, risk, and governance.
Coordinating activities to ensure that the interviews to capture necessary information was managed successfully while minimising disruption to the daily operational duties of NHS stakeholders was a complex task. The trusts involved also suffer from immense resource strains and a skills shortage which made collaboration more challenging, which is a well-known problem for healthcare across the globe.
The complexity of our security systems across multiple trusts must not be overlooked. While patient data and safety are at the top of our agenda, it can be tricky to navigate regulations and ensure that all our premises are stringent with security protocols. Support from a trusted organisation like BT was welcomed by our workforce.
Our Security Advisory Services team conducted an impartial and independent assessment between March and July of 2023 of the SWL ICB’s current security controls.
Our assessment of the SWL ICB used the Centre for Internet Security (CIS) version 8 framework, a set of industry standard cyber security controls, overlaid with sections covering cyber security strategy, governance, and risk management.
We also integrated a number of other control frameworks as requested by SWL ICB, including the Data Security Protection Toolkit (DSPT), Cyber Essentials, NHS ‘What Good Looks Like’, and National Cyber Services requirements.
The duplication of questions across frameworks was considered to streamline processes, and any overlaps were referenced to ensure that no details were overlooked.
The output of the assessment was mapped against the National Cyber Security Centre's Cyber Assessment Framework (NCSC CAF) to identify where recommendations should be implemented. The NCSC CAF provides guidance for organisations responsible for vitally important services and activities.
Thanks to BT, we have strategic oversight of the security of our ICS providers. This means that we can easily identify areas for improvement and put healthcare outcomes first.
We provided SWL ICB with a list of prioritised recommendations to help them improve the resilience of their trusts.
The combined cross-mapping of certifications was praised by NHS England, with many other ICS’ now likely to be expected to adopt the same stringent approach to cyber security.
Our dedicated team provided a blueprint for better healthcare outcomes, by giving the SWL ICB an actionable programme.
We seamlessly managed the project end-to-end, allowing the already stretched NHS staff to focus on where it matters most. Looking ahead, we are working with the SWL ICB stakeholders to successfully implement the recommendations, and the SWL ICB has continued access to our committed, independent cyber security experts.
The process from start to finish has been seamless. BT’s team of security experts have been invaluable, and their attention to detail has enabled us to streamline our resources and increase the cyber resilience of our ICB.
Our team, especially our Clinical Advisory Board who work on the frontline, understand how important getting cyber security right is.
By working together, we can mitigate the damaging repercussions of attacks – such as missed appointments and unusable software and equipment – while improving access to patient data.
Ultimately, this will strengthen the resilience of the health and social care sectors to deliver first class services for us all.
Our team, especially our Clinical Advisory Board who work on the frontline, understand how important getting cyber security right is.
By working together, we can mitigate the damaging repercussions of attacks – such as missed appointments and unusable software and equipment – while improving access to patient data.
Ultimately, this will strengthen the resilience of the health and social care sectors to deliver first class services for us all.
Our team, especially our Clinical Advisory Board who work on the frontline, understand how important getting cyber security right is.
By working together, we can mitigate the damaging repercussions of attacks – such as missed appointments and unusable software and equipment – while improving access to patient data.
Ultimately, this will strengthen the resilience of the health and social care sectors to deliver first class services for us all.
Our team, especially our Clinical Advisory Board who work on the frontline, understand how important getting cyber security right is.
By working together, we can mitigate the damaging repercussions of attacks – such as missed appointments and unusable software and equipment – while improving access to patient data.
Ultimately, this will strengthen the resilience of the health and social care sectors to deliver first class services for us all.
