Free Newsletter
Register for our Free Newsletters
Newsletter
Zones
Access Control
LeftNav
Alarms
LeftNav
Biometrics
LeftNav
Detection
LeftNav
Deutsche Zone (German Zone)
LeftNav
Education, Training and Professional Services
LeftNav
Government Programmes
LeftNav
Guarding, Equipment and Enforcement
LeftNav
Industrial Computing Security
LeftNav
IT Security
LeftNav
Physical Security
LeftNav
Surveillance
LeftNav
View All
Other Carouselweb publications
Carousel Web
Defense File
New Materials
Pro Health Zone
Pro Manufacturing Zone
Pro Security Zone
Web Lec
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
 
News

NHS Trust Aims for Compliance With Lumension

Lumension Security : 30 March, 2010  (Application Story)
The Protection of Patient Data is at the core of the decision of the London NHS Trust to choose Lumension for guarding against software viruses and other malware whilst gaining compliance through endpoint encryption on all removable media
In order to protect against virus and malware infections while safeguarding the confidentiality and integrity of patient data, Barts and The London NHS Trust, a major teaching hospital and a centre of excellence for oncology, surgery, cardiac care, fertility treatment and paediatric care, has selected Lumension Device Control. The Trust partnered with Lumension, the global leader in endpoint management and security, for its industry leading data protection solution to prevent data loss and theft by enforcing removable device usage and encryption policies for all removable devices such as laptops, MP3 players, USB thumb drives, CDs and DVDs.

The Trust, which comprises of three hospitals, The Royal London in Whitechapel, The London Chest Hospital in Bethnal Green and St Bartholomew's in West Smithfield close to St Paul's Cathedral, required a solution to help it maintain its ISO 27001 registration.

The Trust undergoes a complete audit by the British Standards Institute (BSi) every three years and a continual audit every six months to ensure that its IT systems are in line with the ISO 27001 requirements; which require organisations to address and reduce the risk which arise from vulnerabilities, threats and security breaches. Lumension® Device Control allows the Trust to achieve this on an ongoing basis.

"To adequately protect sensitive patient data and keep us in line with the ISO 27001 we needed a solution that would span all endpoints. We had previously protected laptops but fast realised that control and visibility were needed over data stored on all mobile storage devices used by medical staff, such as USB sticks, cameras and MP3 players," said Alan Freedman, senior security engineer at Barts and The London NHS Trust. "It was difficult for us to detect if these devices were being used for malicious purposes, yet enforcing a total ban was out of the question as USB sticks are required for teaching and cameras for surgery photography. After a rigorous selection process we identified Lumension Device Control as the most suitable solution for our needs."

Barts and The London NHS Trust went live with Lumension Device Control in October, 2009. The software prevents patient data loss or theft by enforcing security policies onto all mobile storage devices and enables the IT team to centrally view and control every device that connects to the Trust's PCs, workstations or laptops. The team can also detect and address known vulnerabilities by tracking every mobile storage device that has ever been connected to the network.

Lumension Device Control's "whitelisting" technology is key to the Trust's requirements for sustained mobility as it allows the IT team to specify which removable storage device can be used to transport patient data and which cannot be connected to the network. Where additional devices are permitted, such as to enable an employee to carry out a specific task, all data transferred to or from this device may be audited by the software and a copy of the data can be created using Lumension's patented bi-directional Shadowing Technology. Furthermore, the Trust can view an audit trail of all data that has been moved to or from removable storage media.

Alan Freedman at Barts and The London NHS Trust added: "Essentially, the solution means that we can now define and distribute policy regarding the usage and data transfer onto removable media. This means that we can attain the utmost in data protection without impacting our overall employee productivity. The fact that we have complete control of our data is vital for reporting and auditing as part of our ISO 27001 compliance."

Commenting on the deployment, Matthew Walker, Regional Director UK and Ireland, Lumension said: "We are delighted to have been chosen by Barts and The London NHS Trust. Public sector organisations have recognised their responsibilities as the custodians of personal identifiable records and are constantly refining best practice in data handling. Barts and London NHS has demonstrated the value of using our technology to reinforce existing policies designed to safeguard patient data, by gaining control and visibility of all data transferred to portable devices."
Bookmark and Share
 
Home I Editor's Blog I News by Zone I News by Date I News by Category I Special Reports I Directory I Events I Advertise I Submit Your News I About Us I Guides
 
   © 2012 ProSecurityZone.com
Netgains Logo