| answer text |
<p>The National Data Guardian’s Review of Data Security, Consent and Opt-outs, and
the Care Quality Commission’s “Safe data, safe care” review, both published 6 July
2016, set clear recommendations to improve data and cyber security resilience in health
and care.</p><p>For the health and care sector, a significant programme of work is
underway to mitigate data and cyber security risks, including:</p><p>- CareCERT, NHS
Digital’s Computer Emergency Response Team, established in 2015 to support the National
Health Service to be more cyber resilient and respond to incidents when they happen.
Working closely with the National Cyber Security Centre, the CareCERT suite of support
services includes monitoring and assessing threats at the national level, issuing
alerts to the sector, and providing on-site support to help local health and care
organisations identify and mitigate vulnerabilities.</p><p> </p><p>- NHS Standard
Contract requirements, which came into force in April 2017, to implement National
Data Guardian’s review recommendations and data security standards.</p><p> </p><p>-
Work to ensure that trusts, clinical commission groups and commissioning support units
have implemented critical CareCERT advisories, and updated their firewalls and their
antivirus software.</p><p>The Government expects to respond to those reviews shortly.</p>
|
|
