Georgina Harding, Author at IT Governance UK Blog

The role of Cyber Essentials Plus in care settings

Georgina Harding 22nd June 2018 Cyber Essentials, Healthcare

Data security is an increasing priority for many organisations. The EU General Data Protection Regulation (GDPR), high-profile data breaches and new sector-specific frameworks such as the Data Security and Protection (DSP) Toolkit mean that many are looking for ways to …

[Continue Reading...]

Requirements of a DPO in health and social care

Georgina Harding 6th June 2018 GDPR, Healthcare

The General Data Protection Regulation (GDPR) came into effect on 25 May 2018, extending the rights of individuals over how their data is processed and bringing consistency in the data protection laws across the EU by directly applying to organisations. …

[Continue Reading...]

GDPR compliance checklist for healthcare

Georgina Harding 21st May 2018 GDPR, Healthcare

In February 2018, NHS Digital released guidance for healthcare providers (HCPs) to help them comply with the EU General Data Protection Regulation (GDPR). With the GDPR enforcement date less than a week away, HCPs should have identified a compliance plan …

[Continue Reading...]

The NIS Regulations for the healthcare sector

Georgina Harding 15th May 2018 Healthcare, NIS Regulations

9 May 2018 marked the deadline for EU member states to transpose the Directive on security of network and information systems (NIS Directive) into national law; in the UK, the Directive was transposed as the Network and Information Security Regulations 2018 …

[Continue Reading...]

Cyber resilience for the healthcare sector

Georgina Harding 11th May 2018 Cyber Resilience, Healthcare

The healthcare sector faces more information security risks than almost any other sector. NHS organisations experience daily, automated cyber attacks, and must also contend with targeted attacks. With the introduction of the EU General Data Protection Regulation (GDPR) and the …

[Continue Reading...]

New criminal hacking group targets healthcare organisations

Georgina Harding 8th May 2018 Cyber Security, Healthcare

Industry researchers have identified a new criminal hacking group targeting healthcare organisations in the US, EU (including the UK) and the Middle East. Dubbed ‘Orangeworm’, the group operates by targeting hospitals with Trojan malware to access medical equipment and devices, …

[Continue Reading...]

The Scottish Cyber Resilience Strategy for health boards

Georgina Harding 3rd May 2018 Cyber Resilience, Healthcare

The Cyber Resilience Strategy for the Scottish public sector was launched in November 2017 and aims to promote cyber resilience. The framework is a response to the impact of large-scale cyber attacks, such as WannaCry and its effect on various NHS organisations …

[Continue Reading...]

MPs agree there is a “long way to go” to bring cyber security up to standard in the NHS

Georgina Harding 18th April 2018 Cyber Security, Healthcare

A Public Account Committee (PAC) released its latest report today, reviewing the impact and response to the WannaCry cyber attack targeting healthcare. The attack in May 2017 affected 80 of the 236 NHS Trusts, and 603 NHS organisations overall across …

[Continue Reading...]

The DSP Toolkit – why can’t you register?

Georgina Harding 17th April 2018 Healthcare

As most health and social care organisations will be aware, the Data Security and Protection (DSP) Toolkit replaced the Information Governance (IG) Toolkit from April 2018 as the compliance standard for any organisation looking to access NHS networks. Although the …

[Continue Reading...]

Data Security and Protection (DSP) Toolkit launched for health and social care

Georgina Harding 3rd April 2018 Healthcare

For more than a decade, the Information Governance (IG) Toolkit has been the all too familiar – although not always welcome – annual obligation for healthcare organisations to demonstrate their accord compliance with the Department of Health (DoH) standards for …

[Continue Reading...]

Georgina Harding Archive