The UK Health Cyber Security Summit
Improving the state of cyber security in health care organisations
Moving from regulatory compliance to the cyber security threat response

---

"I fully support the aim of disseminating Cyber Security best practice and particularly welcome the summit’s specific focus on the unique cyber challenges facing the health system. Effective cyber security and risk management are of critical importance to the sustainability of the NHS. The growing threat of criminal and malicious activity is clearly evidenced, with risks including the potential to disrupt health care provision, all of which can adversely affect public trust & confidence. Cyber threats of this nature can erode personal and business confidentiality, destroy system integrity and disrupt healthcare provision, all of which can adversely affect public trust and confidence.’’
Rt. Hon. Jeremy Hunt MP, the Secretary of State for Health

---

High Level Participants & Keynote Speakers 

Simon Dowlman	Suzanne Schwartz	Tim Kelsey	Adrian Matthews
The Lead Official for Cyber Security Policy	MD, MBA, Associate Director for Science and Strategic Partnerships	National Director for Patients & information	Head of Cyber Crime
	Emergency Preparedness / Operations & Medical Countermeasures (EMCM) Director (Acting)
Department of Health	CDRH, FDA	GCHQ	GCHQ

In 2014-2015, The Department for Business & Skills reported that 81% of large organisations and 60% of small businesses in the UK had suffered a cyber security breach. 43% of those companies belonged to the healthcare sector.

With the strong drive to move towards a paperless NHS and to increase usage of digital devices across all operation areas, healthcare is one of the most popular targets for cyber-attacks nationally and globally. Patients’ Protected Health Information can be used in a multitude of attacks, from identity fraud to financial exploitation. 

With eighty-five percent of large health organizations having experienced a data breach in the prior 12 months, it is hardly surprising a greater investment is anticipated in security over the course of 2016. Executive boards are forced to address cyber security as a strategic management issue to avoid high costs of data breaches in the unpredictable future. 

Following on from our successful Cyber Security Series in 2014-2015, The UK Health Cyber Security Summit will examine the latest cyber security issues faced by NHS, private hospitals and GP practices, with particular emphasis on cyber resilience, cloud-based threat intelligence, security of medical devices, electronic patient records as well as new mobile healthcare services.

The programme will also include sessions on the European and US responses to the rising threat of cyber-crime in health and social care. Delegates will benefit from personalised advice from world-renowned experts and from hearing about the key cyber security issues facing industry players across the globe.

Key topics include:

• A new approach to NHS Reform – keeping digitisation safe. Promoting the UK government’s National Cybersecurity Strategy
• Addressing cyber security at the Board level. Understanding how much damage cyber criminals are inflicting on the UK healthcare sector at the moment and what should the NHS and other key healthcare institutions be prepared for in the future
• The main steps of creating an effective cyber risk framework and culture in NHS and private hospitals. Promoting effective security awareness training among employees
• Safeguarding patients’ Protected Health Information. Understanding the contributing factors to the increase in medical identity theft and fraud
• Outlining key technologies and leading practices to address data protection in the cloud. Supporting new cloud applications (EHRs and HIEs)
• Safely adopting and developing mobile health initiatives and supporting consumer-facing applications (patient portal, mHealth, wearables, BYODs, CYODs)
• Mitigating and managing risks in medical devices 
• The impact of the European Data Protection Reform on the healthcare industry – what do NHS employees need to do in order to comply with the Data Protection Act?
• Cyber insurance in the health sector – how legislation and regulatory change drive the need and demand for cyber insurance
• Response capabilities, recovery and resilience in the healthcare sector
• Developing a comprehensive security programme to ensure quality response and timely recovery from a data breach in healthcare institutions