WELCOME !

THANK YOU FOR VISITING THIS SITE. I HAVE BEEN USING BOTH SWAHILI AND ENGLISH LANGUAGE TO EXPRESS ISSUES - I HAVE ATTACHED ENGLISH VERSION TO SOME OF THE SWAHILI NEWS/STORY AT THE END.

Tuesday 28 November 2017

UK: NHS TO LAUNCH £20M CYBER SECURITY OPERATIONS CENTER

In the recent years, most developed countries are investing significantly in cyber defence & attack capabilities. The NHS is now spending £20m to set up a security operations centre that will oversee the health service's digital defences.

Among others, NHS will employ "ethical hackers" to look for weaknesses in health computer networks, not just react to breaches – Such hackers use the same tactics seen in cyber-attacks to help organisations spot weak points.

--------------------------
UPDATES: The UK's Information Commissioner's Office states that organisations must take "appropriate" security measures to protect personal data and consider notifying the individuals concerned if there is a breach.
--------------------------

In May, one-third of UK health trusts were hit by the WannaCry worm, which demanded cash to unlock infected PCs.

In a statement, Dan Taylor, head of the data security centre at NHS Digital, said the centre would create and run a "near-real-time monitoring and alerting service that covers the whole health and care system".


The centre would also help the NHS improve its "ability to anticipate future vulnerabilities while supporting health and care in remediating current known threats", he said.

And operations centre guidance would complement the existing teams the NHS used to defend itself against cyber-threats.

NHS Digital, the IT arm of the health service, has issued an invitation to tender to find a partner to help run the project and advise it about the mix of expertise it required.
Kevin Beaumont, a security vulnerability manager, welcomed the plan to set up the centre –  "This is a really positive move," he said.

Many private sector organisations already have similar central teams that use threat intelligence and analysis to keep networks secure.

"Having a function like this is essential in modern-day organisations," Mr Beaumont said.

"In an event like WannaCry, the centre could help hospitals know where they are getting infected from in real time, which was a big issue at the time, organisations were unsure how they were being infected".



In October, the UK's National Audit Office said NHS trusts had been caught out by the WannaCry worm because they had failed to follow recommended cyber-security policies.


The NAO report said NHS trusts had not acted on critical alerts from NHS Digital or on warnings from 2014 that had urged users to patch or migrate away from vulnerable older software.

1 comment: