New Sophos survey reveals gaps in NHS IT security

Sophos, a global leader in network and endpoint security, today announced the results of a survey into IT security levels within the NHS. Carried out by Vanson Bourne for Sophos, the new study reveals a gap between the perceived strength of IT security measures in the NHS and the actual level of IT security built into NHS networks.
 
In the study of 250 NHS-employed CIOs, CTOs and IT Managers, three quarters – 76 percent – believe that they have suitable protection against cybercrime and data loss and 72 percent claim data loss is their biggest concern in terms of IT security.
However, while 84 percent of respondents state that encryption is becoming a necessity, the Sophos study reveals that encryption levels are worryingly low across the NHS:
·         Only 10 percent state that encryption is well established within their organisation
·         Only 59 percent have email encryption
·         Only 49 percent have file share encryption
·         Only 34 percent have encryption of data stored in the cloud
According to the Information Commissioners Office (ICO), the NHS was the UK’s number one victim of data breaches last year. Data leakage and loss of hardware, such as USB keys, were two of the most prevalent factors in these breaches.
“This study highlights that NHS organisations still face significant IT security issues and that IT decision makers have work to do to address gaps in their security,” said Jonathan Lee, UK Healthcare Sector Manager, Sophos UK and Ireland. “Failure to take the necessary precautions to keep cyber criminals out, to safeguard data and ultimately to protect patients and staff will continue to cause significant problems for NHS organisations. However, budget cuts and changes to working practices, such as the increase in mobile working, all present significant challenges within the sector. ”
Commenting on specific findings, Mr. Lee continued, “It’s no surprise that only 10 percent of NHS organisations stated that encryption was well established within their organisation. Most have encrypted laptops and USB sticks because they have been mandated to do so, but, currently, that is often where it stops.”
Mobile Healthcare – A seismic shift for NHS IT security
The NHS is undergoing a period of significant change – balancing budget cuts while innovating to drive improvements to patient care. As a result, many NHS organisations are driving major operational change, including embracing mobile healthcare.  In the Sophos survey, 42 percent of respondents cite greater use of mobile devices in the community as one of the initiatives driving changes in IT security. This might be, for example, a community midwife using a tablet to record patient data instead of needing to carry around multiple patient files.
Health workers are increasingly on the move and using mobile working practices to stay connected. The impact of the widespread use of mobile devices out in the community on the security of an entire NHS organisation’s network should not be underestimated. With this step change in working practices comes new requirements and IT managers need to ensure their organisation’s IT security is joined up to adequately protect users, devices and data at all points.
Consolidation and investment – future plans will drive improvements
The survey also showed that decision makers in the NHS are beginning to understand the importance of consolidation for improved protection. 42 percent state that they are considering consolidating their IT security providers, with over half (55 percent) stating the main motivation for this as cost savings. This is no surprise, considering 96 percent of organisations say they have experienced operational changes in the past year, with the most common change being budget cuts (60 percent). Survey respondents expect the average cut to IT budgets to be 6 percent, so budget will remain core to any investment decisions being made.
Of those not considering consolidating their suppliers, 54 percent  said that they have many different requirements and their belief is that a sole provider cannot deliver on all requirements. Many in the industry would argue that this is an outdated perception that can lead to gaps within network security.
Jonathan Lee explains: “There is an important shift taking place in IT security. Organisations need a comprehensive security system that encrypts sensitive data, protects all classes of endpoints and communicates with network security systems. Sophos is at the forefront of this shift with a range of solutions offering a synchronized approach to IT security.”
Georgina Turner image

Georgina Turner

Sales Manager

Read the Latest Issue

Follow us on X

Follow us on X

Click Here

Follow us on LinkedIn

Follow us on LinkedIn

Click Here

Advertise here

Reach decision makers and amplify your marketing

Advertise here

Click Here

Related News

Graphic displaying a lockdown solution

Netgenium debuts next gen display and touchscreen technologies

Power-over-Ethernet (PoE) solutions specialist Netgenium will be showcasing its new range of IP…

ICT® Launches New TSL Access Reader Series

Integrated Control Technology (ICT®), a leading manufacturer of intelligent access control and…
Image Provided by Paxton

Paxton Partners with Skills for Security

The security technology manufacturer Paxton is proud to announce a partnership with Skills for Security…
Image Provided by ICT

ICT and Ingram Micro sign distribution agreement MEA

Integrated Control Technology (ICT), award-winning global manufacturer of intelligent electronic access control and security solutions..
Image Provided by Toshiba

Toshiba launches new HDD Innovation Lab

Toshiba Electronics Europe GmbH (Toshiba) has inaugurated a new HDD Innovation Laboratory (HDD Innovation Lab) at its site in Düsseldorf..
Image Provided by Verkada

Verkada Doubles Down on the Channel with Strategic New Hire

Verkada, a leader in cloud-based physical security, today announced the appointment of Micah Deriso as Head of Global Channel…
Image Provided by IPSA

IPSA Appoint Frontline Hero as Ambassador

Abdullah, the courageous security officer praised for foiling a horrific knife attack at Leicester Square, has been appointed as…
Image Provided by Codelocks

New Surface Latch from Codelocks

Codelocks is expanding its Gate Solutions by Codelocks range with the introduction of the new Codelocks’ Surface Latch…
Image provided by Genetec

Nicholas Smith to Lead Genetec UK and Ireland Operations

Genetec, provider of enterprise physical security software, announced the appointment of Nicholas Smith as its new Regional Sales Director…

News Desk

View all the latest, product, project and people news

News Desk

Click Here

Technology News

Keep up-to-date with the latest product innovation

Technology News

Click Here

Industry Sectors

Discover technology in action in all applications

Industry Sectors

Click Here

Enter The Awards

Showcase personal or organisation excellence

Advertise With Us

Reach decision makers and amplify your marketing

Advertise With Us

Click Here
Scroll to Top