Ipswich Hospital NHS Trust: Data Governance
Taking care of people, data and healthcare systems
Measure sector temperature
What’s the diagnosis?
Since Covid-19 the health sector is under pressure, but patients' health remains the main priority. An objective that hackers profit from as they take advantage of the permanent urgency of access to industry data, in order to receive money via ransomware attacks. Especially since the healthcare sector is particularly vulnerable due to the lack of investment in cybersecurity, the vulnerabilities of existing technology and the behavior of staff. The progressive digitization of the sector, notably on the inter-connections between IT systems and equipment or on data exchanges, has strongly increased the attack surface, allowing the possibilities of data-breaches to grow.
The attractiveness of health data
Health data brings more value due to its multitude of information. The average value of health records on the dark web is estimated to be $100, while a credit card number is only valued at $1 or $2. Health appears to be the new Eldorado for hackers, and the sector has a lot of catching up to do.
Security Navigator 2024: explore some key findings for healthcare
According to our research the main challenges for IT security in healthcare are:
- Legacy systems that have to be maintained for operating expensive machinery
- Complex network setups that had to be extended on demand
- Redundancy is a requirement: failure of certain systems can be life-threatening
- The “medical IoT” offers an increasing attack surface as security is hardly ever considered in the development of such devices.
Health Care and Social Assistance is in 6th place this year with 5% of all Cyber Extortion (Cy-X) victims we recorded. The number of victims increased by 61% compared to last year. Three quarters of the threat actors for Health Care and Social Care incidents were classified as External, which means that internal actors are much less of a concern than in other industries (industry average: 43% of incidents caused internally).
Find out more on industry rankings in the Security Navigator 2024!
Prevent risks while empowering humans
Know your weaknesses
Orange Cyberdefense helps you stay ahead of threats with a four-step path. It helps you better understand your vulnerabilities, identify and fix them before they are exploited.
Raise awareness within your company
Humans are the first superspreader and at the heart of cyberhealth. That's why your employees need to be trained on the risks and the right actions to take. Through our trainings, your employees will be able to:
- Learn about the threats and update attack tactics regularly
- Know the process to signal an incident
- Identify suspicious activities
- Be aware of cyberattack impacts
Securing assets: protect your patients and your reputation
Intellectual property
Ensuring continuity of medical care
Cyber Crisis Management
Orange Cyberdefense helps you strengthen your security posture through a holistic approach that addresses both temporality and multi-dimensionality aspects:
- Before the crisis as preparation is key to victory
- During the crisis helping you respond efficiently in line with defined plans
- After the crisis supporting you to restore and prepare for the next crisis
Learn how to deal with a cyber crisis
How we can help you
Support
Quick incidence response capacity in case of cyber attacks.
Experience
Take advantage of our strong customer experience in the healthcare sector.
Skills
Expertise and support on local regulations.
Recognition
A trusted partner referencing on public markets and central purchasing agencies.
Expertise
Intelligence-led security reports such as the Security Navigator.
