Skip to main content

Cyber Assurance Service

We offer centrally funded assessments to help NHS organisations identify vulnerabilities and understand and overcome areas of high risk. This will help your organisation to achieve Data Security and Protection Toolkit (DSPT) standards.

About the assessments  

The assessment will measure your performance in cyber and data security standards, by completing an IT Health Check and assessing your adherence to key DSPT assertions relating to cyber security.

Reports completed after the assessment will detail where improvement is needed, also considering the urgency to correct.

These assessments are for NHS trusts and commissioning support units (CSUs).


What the assessment involves 

The work is delivered by our specialist supplier, Dionach. The intention is to keep your involvement to a minimum to make it easy as possible.

Our specialist supplier will carry out an IT Health Check and complete a detailed technical review of your organisations IT setup, structure and working practices.  The IT Health Check will cover:

  • network protection assessment 
  • security review for patient administration system (PAS)
  • file testing
  • active directory, central security and mobile device review
  • asset security review
  • wireless security review

Some data collected as part of the IT Health Check will be used to assess the key DSPT assertions, although some will require additional information form you to complete. The DSPT aspect will cover:

  • accountability and governance
  • access management
  • password protection
  • software and email anti-virus protection
  • business continuity disaster recovery
  • system updates and patch management 
  • vulnerability management
  • network configuration
  • firewall management

After the assessment

You will receive a detailed report within 10 working days of the assessment, outlining the highest risks and critical areas. This report will include suggested actions to remediate.

Register for a cyber assessment

To find out more or to request this service, raise a call to the helpdesk by registering on the portal, clicking ‘Request Something’ searching for ‘Cyber Assurance Service’.

Our internal teams and supplier will then be in touch to arrange your assessment. 

Last edited: 11 July 2022 3:19 pm