Intelligence has indicated that healthcare and public sector organisations are being targeted with ransomware and malware attacks designed to gain access to backup solutions and encrypt the backup data as a precursor to a wider-scale ransomware attack.
This places utmost importance on implementing a robust backup solution that can resist targeted cyber-attacks and to allow the organisation to recover from an attack when needed.
1. A remote project kick-off with all stakeholders focuses on gathering information about the organisation.
2. A workshop will ascertain whether the current backup and recovery function is suitable for, and adheres to, the guidelines given by the NCSC to mitigate risk against a cyber-attack.
3. Data discovery exercise to obtain data to guarantee that all critical systems are covered in the existing design, this will take the form of an active scan against the environment to identify all live hosts and the volume of data for backup.
4. A report providing a detailed alignment or non-alignment, and recommendations on how align with industry best practice, will be sent to you.
This will take 9-12 weeks, the effort required from your organisation will vary depending on needs.
Next steps
Following the report, an output of the review should be discussed with your NHS cyber security regional lead to discuss follow-on remediation and next steps.
More information can be found on the technical remediation hub.