NHS England to adopt new cyber security framework
An updated cyber resilience framework for health and social care organisations has been announced by the National Data Guardian (NDG) and NHS England. The change aims to align health and care with cyber resilience standards across other sectors. Starting from 2 September 2024, the NHS Data Security and Protection Toolkit will transition to the National Cyber Security Centre’s cyber assessment framework. Dr Nicola Byrne, the NDG for health and adult social care in England, expressed support for this transition, highlighting the importance of continuously improving data protection and cyber resilience standards.
The previous 10 data security standards introduced in 2016 are being replaced to adapt to the evolving technology and cyber threats landscape. NHSE will guide organisations through the transition process, with NHS Digital providing CAF-aligned DSPT guidance. The decision to update the framework comes after recent high-profile cyber attacks on healthcare providers, emphasizing the critical need for robust cybersecurity measures in the healthcare sector.
In conclusion, the government’s commitment to enhancing cybersecurity measures in healthcare is evident through initiatives like the new Cyber Security and Resilience Bill proposed by Prime Minister Keir Starmer. By adopting the new cyber security framework, NHS England is taking proactive steps to safeguard patient data and ensure the resilience of healthcare services against cyber threats.
