We are pleased to announce our reaccreditation, for a fourth consecutive year, by UK’s National Cyber Security Centre (NCSC) with Cyber Essentials and Cyber Essentials PLUS standards.
The first phase of the audit required that the IT/ Risk Management Division team be reviewed against Cyber Essentials requirements, which expect that there is a framework in place for implementing different levels of controls against most common cyber-attacks. During phase two, the Cyber Essentials PLUS required a much more complicated and advanced assessment of the cyber security controls, involving vulnerability scans and penetration attacks to test cyber defences’ resilience against more sophisticated cyber-attacks.
For this year’s reaccreditation, the Cyber Essentials and Cyber Essentials PLUS standards were mapped closely to ISO27001:2013, the international standard for an Information Security Management System. This alignment enabled us to implement commonly accepted cyber security and information controls and further enrich our risk-based approach.
Our continuous compliance is a demonstration to the Hospital’s patients, Associated Doctors, suppliers and other interested parties alike, that we take cyber security and information compliance seriously.
YGIA Polyclinic would like to thank the members of the Management Team, Department Heads, Associates and all Staff for their cooperation, and also warmly congratulate the IT/ Risk Management Division Team for the successful completion of this important project which falls under their supervision and coordination.