Lack of cyber security expertise within the NHS

HB News: 11/12/2018 - 15:01

A new survey of NHS trusts has revealed a large disparity in cyber security skills and spending across the NHS, with most trusts lacking sufficient in-house cyber security expertise.

The three-month Freedom of Information campaign, undertaken by Redscan, surveyed more than 150 NHS trusts in the UK and reveals a wide imbalance in employee cyber security training and spending between trusts, with a worrying number of NHS trusts likely to be failing to meet training targets on information governance.

The investigation shows that NHS trusts employ just one qualified security professional on average per 2,582 employees, although 24 out of 108 responding trusts having no employees with security qualifications.

With NHS trusts spending an average of £5,356 on data security training, the findings also reveal a significant proportion of NHS organisations conducted such training in-house at no cost or only used free NHS Digital training tools. The variation in spend, which ranged from £238 to £78,000, was also exemplified by the fact that only 12 per cent of trusts had met the NHS Digital mandatory information governance (IG) training requirements that 95 per cent of all staff must pass IG training every 12 months. A quarter of trusts had trained less than 80 per cent of their staff.

Mark Nicholls, Redscan director of Cyber Security, said: “These findings shine a light on the cyber security failings of the NHS, which is struggling to implement a cohesive security strategy under difficult circumstances. Individual trusts lack in-house cyber security talent and many are falling short of training targets; while investment in security and data protection training is patchy at best. The extent of discrepancies is alarming, as some NHS organisations are far better resourced, funded and trained than others.

“The cyber security skills gap continues to grow and it’s incredibly hard for organisations across all sectors to find enough people with the right knowledge and experience. It’s even tougher for the NHS, which must compete with the private sector’s bumper wages. Not to mention the fact that trusts outside of traditional tech hubs like London and Cambridge have a smaller talent pool from which to choose from.”

Draft Digital Health Rewired24 programme published

This story was first published in digitalhealth.net

Product Features

Infection Control

Thermoguard

UK Building Regulations highlight toxic gas and smoke from layers of paint built up over multiple redecorations as a major cause of permanent ill health or death in a building fire.

Their concern rose with discovery the flame retardant paints most widely used paint along escape routes have been ones which to this day counter-productively use emission of heavy toxic gas to smother flames which rapidly spread along walls if layers of paint delaminate in a fire.

EXPERT PANEL - UNLOCKING THE POWER OF INTEGRATIONS: TRANSFORMING HEALTHCARE IN THE DIGITAL AGE

Name change will create expanded presence for Headshots.com in healthcare market

Omnicell to launch innovative new solution at this year’s Clinical Pharmacy Congress

Supplier Profiles

Design and Build

CDC success at Victoria Infirmary, Northwich creates ideal model for future patient pathway reforms

Northwich’s Victoria Infirmary (VIN) Community Diagnostic Centre (CDC) has enabled more patients

Facilities Management

Gain valuable insight with Adveco for gas to electric decarbonisation projects

Adveco, the commercial hot water specialist, announces the launch of live metering of domestic ho

Waste and Recycling

Cromwell Polythene

Latest Features

Parking

What’s going on in healthcare parking right now?

Sarah Greenslade, public affairs and communications officer at the British Parking Association looks at some of the problems and innovations in healthcare parking

Stakeholder communications - ten principles for doing it right

It’s easy to assume that the comms team is there to handle press enquiries and the occasional social media storm – but the reality is that strategic communications can make a measurable impact across the entire organisation, from operational to financial, when done properly

Acknowledging the impact of medical equipment waste

Leveraging intelligent automation to improve cancer care: a step towards meeting NHS targets

Reaching the virtual ward target

Easing the squeeze on hospital beds ahead of winter, and building resilience beyond

Prescribing nature makes sense for people, business & our NHS

Re-engineering how we narrow the physical and mental health gap for minority ethnic communities

How effective learning and development can help the health and care sector

Tweet #healthbusiness_