NHS bid to get IT right
Computer systems across NHS Lanarkshire sites will be better protected against cyber-attacks following the publication of a new Scottish Government project.
The Public Sector Action Plan on Cyber Resilience will encourage all public bodies to implement the same standards of cyber-security in their organisations.
These include active threat intelligence sharing, clear cyber- incident response protocols and appropriate independent assurance that critical protection against the most common forms of attack is in place.
The plan is significant for NHS Lanarkshire following attacks on IT systems at Wishaw General, Hairmyres and Monklands Hospital in May and August this year.
Almost 500 pat i e n t appointments and procedures were cancelled when computers were infected by the “WannaCry” ransomware in May.
The health board was also hit by a further cyber-attack in August, which led to 184 cancelled appointments across the region.
Calum Campbell, chief executive of NHS Lanarkshire, said: “Following the cyber attack in May we took prompt and robust action to improve the security of our IT systems, which helped limit the impact of the malware incident in August.
“Ever y organisation throughout the world needs to recognise and prepare for future cyber threats of this kind.
“Our experience, detailed analysis and learning from both incidents along with robust actions to enhance our cyber security mean that NHS Lanarkshire is much better placed to meet and respond to these challenges.”
Announcing the plan’s launch at a CBI Cyber Security Conference, Deputy First Minister John Swinney said: “I want Scotland to be a world-leading nation in cyberresilience by 2020.
“Today marks the first of those plans being published. Our public sector action plan will encourage all public bodies, large or small, to achieve common standards of cyber-resilience.”