Linked Data API

Show Search Form

Search Results

1126877
registered interest false more like this
date less than 2019-05-15more like thismore than 2019-05-15
answering body
Department of Health and Social Care more like this
answering dept id 17 more like this
answering dept short name Health and Social Care remove filter
answering dept sort name Health and Social Care more like this
hansard heading NHS: Cybersecurity remove filter
house id 1 more like this
legislature
25259
pref label House of Commons more like this
question text To ask the Secretary of State for Health and Social Care, how much the National Health Service spent on cyber security in each of the last five years. more like this
tabling member constituency Windsor more like this
tabling member printed
Adam Afriyie more like this
uin 254785 more like this
answer
answer
is ministerial correction false remove filter
date of answer less than 2019-05-24more like thismore than 2019-05-24
answer text <p>The information requested on cyber spending covers sensitive detail about cyber security investment for the National Health Service. In this instance, releasing this information at the level of any annual breakdown may assist in determining the effectiveness of detecting cyber-attacks on the NHS, and could compromise measures to protect NHS IT systems, leaving them vulnerable to future cyber-attacks.</p><p>However, in total, over £250 million will have been invested nationally to improve the cyber security of the health and care system between 2016 and 2021. This excludes both investment by local organisations, and wider national IT investment which supports better security such as Microsoft licensing for NHS organisations.</p><p>Regarding the steps taken to defend against cyber attacks on the NHS, the active cyber defence of NHS organisations is a local responsibility for each organisation to carry out. However, there is national support and practical guidance available to NHS organisations which is primarily delivered by NHS Digital but supported and prioritised for the highest risk organisations by NHS England and the Department. In the event of national-scale incidents that affect many health and care organisations, NHS Digital plays a vital role in coordinating and ensuring appropriate technical remediation, as part of the wider cross-system cyber security response led by the Department.</p>
answering member constituency Thurrock more like this
answering member printed Jackie Doyle-Price more like this
grouped question UIN 254786 more like this
question first answered
less than 2019-05-24T12:33:05.65Zmore like thismore than 2019-05-24T12:33:05.65Z
answering member
4065
label Biography information for Dame Jackie Doyle-Price more like this
tabling member
1586
label Biography information for Adam Afriyie more like this
964572
registered interest false more like this
date less than 2018-09-03more like thismore than 2018-09-03
answering body
Department of Health and Social Care more like this
answering dept id 17 more like this
answering dept short name Health and Social Care remove filter
answering dept sort name Health and Social Care more like this
hansard heading NHS: Cybersecurity remove filter
house id 1 more like this
legislature
25259
pref label House of Commons more like this
question text To ask the Secretary of State for Health, what changes have been made to NHS (a) IT systems and (b) cyber security since the cyber attack in May 2017. more like this
tabling member constituency Bolton North East more like this
tabling member printed
Sir David Crausby more like this
uin 169018 more like this
answer
answer
is ministerial correction false remove filter
date of answer less than 2018-09-11more like thismore than 2018-09-11
answer text <p>The National Health Service is putting in place robust measures to protect IT systems against cyber-attacks. Since May 2017 the Government has invested £60 million to support NHS providers to improve their security position, with a further £150 million pledged up until 2021 to improve the NHS’s resilience against attacks.</p><p><br> The Department published its progress report in February 2018 entitled ‘Securing cyber resilience in health and care: progress update’. The report is available at the following link:</p><p> </p><p><a href="https://www.gov.uk/government/publications/securing-cyber-resilience-in-health-and-care-progress-update" target="_blank">https://www.gov.uk/government/publications/securing-cyber-resilience-in-health-and-care-progress-update</a></p><p> </p><p>Key actions taken since February 2018 include:</p><p>- signing a Windows 10 licensing agreement with Microsoft which will allow local NHS organisations to save money, reduce potential vulnerabilities and help increase cyber resilience;</p><p>- enhancing the capability of the Cyber Security Operations Centre boosting the national capability to prevent, detect and respond to cyber-attacks through the procurement of IBM as a specialist partner;</p><p>- launching the Data Security and Protection Toolkit which provides an accessible dashboard enabling trusts to track their progress in meeting the 10 Data Security Standards;</p><p>- agreeing plans to implement the recommendations of the Chief Information Officer for Health and Care’s review of the May 2017 WannaCry attack;</p><p>- provided specialist face to face security training (System Security Certified Practitioner - SSCP) for over 100 staff; and</p><p>- in May 2018 the Network and Information Security Regulations came into force which requires operators of essential services (including some NHS healthcare providers) to put appropriate security measures in place and to report significant incidents that occur.</p>
answering member constituency Thurrock more like this
answering member printed Jackie Doyle-Price more like this
question first answered
less than 2018-09-11T10:56:06.307Zmore like thismore than 2018-09-11T10:56:06.307Z
answering member
4065
label Biography information for Dame Jackie Doyle-Price more like this
tabling member
437
label Biography information for Sir David Crausby more like this
864429
registered interest false more like this
date less than 2018-03-15more like thismore than 2018-03-15
answering body
Department of Health and Social Care more like this
answering dept id 17 more like this
answering dept short name Health and Social Care remove filter
answering dept sort name Health and Social Care more like this
hansard heading NHS: Cybersecurity remove filter
house id 1 more like this
legislature
25259
pref label House of Commons more like this
question text To ask the Secretary of State for Health and Social Care, what steps his Department has taken to improve the security of the IT systems in the NHS since the cyber attack of May 2017. more like this
tabling member constituency Leicester East more like this
tabling member printed
Keith Vaz more like this
uin 132912 more like this
answer
answer
is ministerial correction false remove filter
date of answer less than 2018-03-22more like thismore than 2018-03-22
answer text <p>Since the WannaCry cyber attack, the Department has taken a number of further actions, building on a programme of work led by the Department working with its arm’s-length bodies since 2010. These actions are described below:</p><p> </p><p>- The Department’s Data Security Incident Response Plan reviewed. System-wide Data and Cyber Security Operations Playbook developed - June 2017;</p><p>- Customer Support Agreement with Microsoft - June 2017;</p><p>- The Department’s response to National Data Guardian Review was published including cyber security plans - July 2017;</p><p>- NHS Digital published unsupported systems guidance - July 2017;</p><p>- E-learning package launched for National Health Service staff - July 2017;</p><p>- Data security now part of the Care Quality Commission’s (CQC’s) assessments of well led NHS trusts. General practitioners and adult social care providers followed in November - September 2017;</p><p>- 2017/18 Data Security and Protection Requirements published - October 2017;</p><p>- Text messaging relay service launched - November 2017;</p><p>- First health cyber-attack simulated table top exercise - December 2017;</p><p>- 34 of our major trauma centres and ambulance trusts completed on-site assessments - December 2017;</p><p>- 190 organisations completed on-site assessments - January 2018;</p><p>- Additional £25 million funding secured to support major trauma centres and ambulance trusts with their critical infrastructure - January 2018;</p><p>- Initial £150 million identified via reprioritisation across NHS IT portfolio to continue investment in local infrastructure and national systems and services to improve monitoring, resilience and response - January 2018;</p><p>- 100% of NHS trusts and Commissioning Support Units signed up to CareCERT Collect - January 2018;</p><p>- New Cloud guidance published - January 2018;</p><p>- New CQC unannounced cyber security inspections pilot started - February 2018; and</p><p>- All major trauma centres and ambulance trusts completed on-site assessments - February 2018.</p><p> </p><p>These actions are further described in ‘Securing cyber resilience in health and care: A progress update’ published by the Department on 1 February 2018 which can be accessed at the link below:</p><p> </p><p><a href="https://www.gov.uk/government/uploads/system/uploads/attachment_data/file/678484/Securing_cyber_resillience_in_health_and_care.pdf" target="_blank">https://www.gov.uk/government/uploads/system/uploads/attachment_data/file/678484/Securing_cyber_resillience_in_health_and_care.pdf</a></p>
answering member constituency Thurrock more like this
answering member printed Jackie Doyle-Price more like this
question first answered
less than 2018-03-22T16:07:21.517Zmore like thismore than 2018-03-22T16:07:21.517Z
answering member
4065
label Biography information for Dame Jackie Doyle-Price more like this
tabling member
338
label Biography information for Keith Vaz more like this