Cyber Security for Healthcare
Aad is a Professor in Computer Science, specialising in Cyber Security, at Newcastle University. His research focusses on security, privacy and trust where it takes the perspective of the user and the decision-maker, and asks the questions: how can we run IT, make decisions about IT, and implement IT such that the business is secured but efficient and people feel safe but can be productive.
Aad led the Institute of Coding project at Newcastle University, which was an initiative to offer postgraduate degree apprenticeships and various CPD courses to improve digital skills in the region as well as nationally. He teaches on several undergraduate and postgraduate courses as well as regularly consults and delivers CPD sessions on Blockchain and Cyber Security to professionals from several industries and diverse backgrounds.
This introductory course explain of some of the fundamental concepts in cyber security and impart an understanding of information system security requirements. By analysing real-world examples, practical aspects of cyber security including threats and vulnerabilities, with a particular focus on the potential threats to health data, will be discussed. Learners will learn about good practices in cyber security to establish a security culture. Through the course, important questions such as “why is cyber security important for healthcare?” and “does healthcare have a cyber security problem?” will be considered and discussed.
The course covers:
The basics:
- Cyber security fundamentals
- NDG Data Security Standards
The threats:
- Cyber security threats in general (STRIDE model)
- Risk assessment
- Specific aspects to clinical information system safety and patient safety
- Hazards and accidents: Introduction to safety culture, risk management and ALARP incident response
- Cyber security technologies (technologies for implementing privacy, security and trust)
- Examples:
- Learning from the 2017 WannaCry ransomware attack
The practical stuff:
- Cyber security good practices o UK Cyber essentials scheme (https://www.cyberessentials.ncsc.gov.uk/)
- Key security controls (secure devices and software, access control to data and services, malware and virus protection, devices and software update, secure internet connection) o 10 steps to cyber security (https://www.ncsc.gov.uk/collection/10-steps-to-cyber-security
- Multiple attack steps: Mat Honan attack
- Cyber security and GDPR
New dates for this programme will be announced in Mid 2023
Request the course handbook and join our mailing list to be notified of next course dates