NHS Digital sets out 8 cyber security tips for health and social care workers

Dementia Care
October 18, 2022

As Cyber Security Awareness Month continues, tips from an NHS expert have been released for health and social care workers.

Mike Fell, NHS Digital’s Executive Director of National Cyber Security Operations, is urging everyone to take the right steps to prevent ‘criminals getting hold of data, devices and accounts’.

Here are Mike’s top tips:

  1. Use a strong password: The longer and more complex your password, the more difficult it is to crack. Passwords should be easy to remember, but difficult for someone else to guess. The National Cyber Security Centre (NCSC) suggests you: ‘make sure that somebody who knows you well could not guess your password in 20 attempts’. NSCS also recommends combining three random words to create a single password or you could use a password manager.
  2. Beware of phishing scams: Cyber criminals can use email, websites and phone calls as a way to steal your information. They are getting cleverer and more realistic, so watch out for warning signs such as incorrect branding, spelling mistakes, an email address with an irregular format, suspicious hyperlinks and an urgent title or request. And be sure to report any suspicious emails as an attachment to [email protected].
  3. Be mindful of what you share: Do not share or wear your ID pass out in public or show it on social media. Social engineering is when criminals use tricks or deception to manipulate people into giving them access to data or systems. The more information you share about yourself online, the easier you are to socially engineer.
  4. Watch out for tailgaters: Tailgating is a physical security breach where an unauthorised person gains entry to protected areas by following a member of staff through security barriers like doors and gates. Don’t be afraid to ask for ID. Insider threats are real, so don’t be scared to challenge.
  5. Keep up to date with data training: Knowing how to handle data will reduce the risk of service disruption. Data breaches can lead to fines, disruption to services and reputational damage. Make sure you understand and follow the latest guidance around data sharing.
  6. Lock it down: Never leave your computer or mobile device unlocked. It is much easier to abuse an unlocked laptop than it is to hack into a network.
  7. Stay safe when using public WiFi: Do you know what network you are really connecting to?
  8. Make use of the excellent resources available: NHS Digital’s Keep I.T. Confidential campaign is a fantastic way to help organisations promote good cyber security across their workforce. The campaign has an online security awareness toolkit which includes practical steps that staff can adopt into their everyday job, such as setting secure passwords, keeping devices locked when they’re not in use, and being aware of phishing, email scams and social engineering.

Further Reading

Cyber Security Awareness Month October 2022

QCS – The social care sector must do more to harden cyber security and improve digital hygiene

Share: 

February 19, 2024
QCS 12 audit series: Understand why each audit is important and learn how to share your audit actions with the team – Resource 12: Health and Safety
Read more
February 5, 2024
QCS 12 audit series: Understand why each audit is important and learn how to share your audit actions with the team – Resource 11: Observation
Read more
January 22, 2024
QCS 12 audit series: Understand why each audit is important and learn how to share your audit actions with the team – Resource 10: Medication
Read more