The incident
A Trust suffered a significant cyber incident, whereby our specialists were deployed the same day to assist the assessment of the extent of the incident, what immediate measures were required and actions to ensure that operations were able to continue. We were able to swiftly provide assurance over the data impacted and the extent of the incident. Our review was used to implement enhanced controls, resulting in development of policies and training for key Trust personnel.
The review
The independent review was used as a catalyst to implement greater awareness across the Trust on cyber risks, whilst also being used to provide the Trust Board with advice and guidance on their obligations on complying with IOCO reporting requirements and ensuring data protection principles were met.