King Edward VII’s Hospital, a leading private hospital with Royal patronage, must ensure sensitive patient data is always suitably protected. Confidence has been achieved by subscribing to ThreatDetect™, Redscan’s award-winning Managed Detection and Response service, for proactive network and endpoint monitoring. The hospital now has peace of mind it is doing all it can to protect patient data and maintain operational resilience.
Few organisations need to process such large volumes of sensitive and private data as organisations in the healthcare sector. It is therefore no exaggeration to describe King Edward VII’s (KEVII) need for operational resilience as critical.
Like all hospitals, KEVII must manage and maintain a large range of specialist systems, including life-saving medical equipment. Ensuring that these systems always operational, and that personal patient data can be accessed and shared across a network instantaneously in order to facilitate medical care is paramount. Simultaneously, a strict duty exists to ensure that such sensitive and personal information does not end up in the wrong hands.
KEVII must also ensure that it is compliant with the requirements of the GDPR, NIS Directive and Care Quality Commission (CQC), which mandate that personal data is suitably protected and breaches are promptly detected, responded to and, when necessary, reported.
“Our patients trust us to protect their personal information and by working with Redscan, we extend that trust to them.”, says Richard Andrews, Head of IT. The hospital had firewalls and antivirus software, however wanted to improve visibility of events inside its network in order to detect advanced threats capable of evading these controls. At KEVII, security is viewed as a sub-function of the IT department, but the team of six just didn’t have the resources to manage the technologies required to perform 24/7 security monitoring alongside other day-to-day responsibilities.
Knowing that KEVII needed a managed service to provide the capabilities required for proactive network monitoring, Richard Andrews, Head of IT for the hospital, spent considerable time researching suitable providers to find a solution that met his requirements. Redscan and its Managed Detection and Response service, ThreatDetect, stood out from the crowd, offering a high level of specialist security expertise and technology, plus support to manage cyber incidents.
Combining 24/7/365 security professionals, best in class network and endpoint detection tools and up-to-the minute industry intelligence, ThreatDetect helps KEVII identify, contain and respond to cyber-threats, ensuring the continual protection of the organisation’s systems and data.
The ThreatDetect deployment, in the case of KEVII, comprises of AlienVault® USM Anywhere™ and Carbon Black Response. Combining these two solutions enables Redscan to achieve wide visibility of events across KEVII’s network and endpoints in order to detect and respond swiftly to malicious activity whenever it occurs. The network and endpoints are hardened with detection and monitoring geared towards identifying a wide range of threats, from malware and ransomware to suspicious account activity.
“Thanks to Redscan we now have a solution that gives us the ability to monitor, isolate and eliminate threats across our IT infrastructure.”, says Andrews. “Redscan staff are always on hand to provide swift,
clear advice. They help us keep a constant eye on our network and respond quickly to incidents to ensure systems remain operational.”
When deploying ThreatDetect, Redscan’s engineering team worked hand in hand with KEVII’s IT team to design and deploy a solution that is needs-driven and provides maximum threat visibility. The technology underpinning the solution was installed and then configured to meet KEVII’s exacting requirements.
Redscan’s CSOC professionals monitor KEVII’s infrastructure around the clock and investigate, analyse and triage security alerts generated by the underlying technologies. In the first six months following the deployment of the service, KEVII’s systems generated over 6200 security alerts. The team at Redscan triaged every one of these alerts to remove false positives and ensure that only genuine incidents were reported to the KEVII team for action.
Redscan’s CSOC is always on hand to not only report threats but help KEVII respond to them. On one particular occasion, KEVII was on the receiving end of an advanced persistent malware attack that targeted multiple endpoints and sought to harvest user credentials and exfiltrate data. Using Carbon Black Response, the Redscan’s team was able to quickly identify infected endpoints, isolate them from KEVII’S network and analyse the chain of events associated with the attack to help prevent similar style attacks. Had ThreatDetect not been engaged at this time, it’s likely that the attack would have caused significant damage to the hospital’s systems.
Following the detection of incidents, Redscan’s CSOC analysts provide all the advice and support that the hospital needs to quickly address issues and minimise any potential disruption. CyberOps, Redscan’s proprietary threat management platform, enables the CSOC to communicate securely with KEVII’s in house team.
Richard describes Redscan’s CSOC professionals as an extension of his in-house team. He’s on first name terms with Redscan’s analysts and relies on their assistance to not just detect threats but also respond quickly and effectively to them.
Redscan provides weekly and monthly reports that help KEVII’s management team to stay abreast of the hospital’s security posture. The reports help demonstrate compliance with the GDPR, CQC and NIS Directive to give confidence that appropriate controls are in place.
KEVII are very happy with the value of the service, which offers a huge saving compared to the cost of maintaining an in-house team to provide an equivalent threat monitoring and detection capability. ThreatDetect ensures that the hospital doesn’t need to make a large capital investment in resources, recruit and train staff, or regularly invest in new security technologies.
"Redscan’s hands on approach identified security flaws that had previously been overlooked by other vendors"
"Our partnership with Redscan has been one of the most successful that we have ever undertaken"
"We have been very impressed by the quality of Redscan’s engagement, communication and reporting. We will not hesitate to use them for any future testing requirements."
"Redscan gave us the professional service and quick turnaround that we needed to meet our tight deadlines."
“Redscan has given us a third party stamp of approval for our IT security and the reassurance to know we are as secure as possible.”
from blog
Vulnerability scanning and penetration testing are two common forms of cyber security assessment that are conducted to help organisations evaluate, measure and mitigate information security risk. The differences …
As organisations embrace digital transformation and migrate operations and data to the cloud, too many overlook crucial security considerations which, if left unaddressed, could leave critical data and …
This content is blocked. Accept cookies to view the content.
We use cookies for security, to optimise your browsing experience and anonymously analyse site traffic.
Accepting necessary cookies is required to provide you with a minimum level of service. Cookie Statement
