Lock the Digital Door – Going Beyond DSPT
Free session covering risks, real incidents and simple steps to protect your service.
Following a recent incident in Sussex where a care service had an email account compromised, we felt it was important to raise awareness of the risks facing adult social care and the practical steps that can be taken to reduce them.
When an email account is accessed without permission, it is not just the inbox that is at risk. It can give someone the opportunity to reset passwords on other systems linked to that email address. In a worst case scenario, this could mean access to payroll, banking, rostering systems, care planning records and other sensitive information. It can also lead to fraudulent emails being sent to colleagues or families, disruption to day to day operations, and reportable data breaches.
Many providers assume that having an IT company in place means they are protected. IT support does not necessarily mean cyber security. The service affected by this incident also had IT support in place, and yet the attack still happened. Strong cyber security is about embedding good practice into everyday work.
Why this session
This session is designed to build on your DSPT work, helping you better understand current cyber risks and the practical steps you can take to reduce them. While the DSPT provides a strong foundation, many providers want to take their cyber security a step further.
What the session will cover
This session will draw on guidance from the South East Cyber Resilience Centre and will focus on:
- Common cyber threats facing social care providers
- How incidents such as email compromise happen
- Practical steps to reduce risk
- Simple actions you can take to strengthen your cyber security
- How this links to your existing DSPT work
Who should attend
This session is for adult social care providers who:
- Are working on or have completed the DSPT
- Want to strengthen their approach to cyber security
- Are responsible for data protection or information governance
Good to know
- Free to attend
- Delivered online
- No technical expertise required
Free session covering risks, real incidents and simple steps to protect your service.
Following a recent incident in Sussex where a care service had an email account compromised, we felt it was important to raise awareness of the risks facing adult social care and the practical steps that can be taken to reduce them.
When an email account is accessed without permission, it is not just the inbox that is at risk. It can give someone the opportunity to reset passwords on other systems linked to that email address. In a worst case scenario, this could mean access to payroll, banking, rostering systems, care planning records and other sensitive information. It can also lead to fraudulent emails being sent to colleagues or families, disruption to day to day operations, and reportable data breaches.
Many providers assume that having an IT company in place means they are protected. IT support does not necessarily mean cyber security. The service affected by this incident also had IT support in place, and yet the attack still happened. Strong cyber security is about embedding good practice into everyday work.
Why this session
This session is designed to build on your DSPT work, helping you better understand current cyber risks and the practical steps you can take to reduce them. While the DSPT provides a strong foundation, many providers want to take their cyber security a step further.
What the session will cover
This session will draw on guidance from the South East Cyber Resilience Centre and will focus on:
- Common cyber threats facing social care providers
- How incidents such as email compromise happen
- Practical steps to reduce risk
- Simple actions you can take to strengthen your cyber security
- How this links to your existing DSPT work
Who should attend
This session is for adult social care providers who:
- Are working on or have completed the DSPT
- Want to strengthen their approach to cyber security
- Are responsible for data protection or information governance
Good to know
- Free to attend
- Delivered online
- No technical expertise required
Good to know
Highlights
- 1 hour
- Online