Connect Health, who serve over 375,000 NHS patients across 29 NHS ICBs (Integrated Care Boards) delivering MSK, pain management and mental health services, was audited in August this year for the prestigious information security standard.
The achievement of ISO 27001 certification demonstrates Connect Health’s commitment to establishing, implementing, maintaining and continually improving its information security management system (ISMS).
The audit included visits to Connect Health’s head office in Newcastle covering core aspects of ISO 27001, including interviews with senior management followed by visits to two NHS services. The audit also included interviews with employees conducted in person and remotely via Microsoft Teams.
Helen Faulds, Chief Information Officer at Connect Health said:
This certification confirms our ongoing commitment to creating a systematic approach to the implementation, monitoring and improvement of our security processes. Importantly, ISO 27001 isn’t just a ‘one-off’ audit, but demonstrates our ongoing commitment to continuous improvement to provide resilience to cyber-attacks, preparedness for new threats, data integrity, confidentiality and availability and ultimately protect our organisation and the NHS patients who we serve.