Embed
The Embed pathway is for anyone who is responsible for managing or supporting others (e.g. supervisors, team leaders, first level managers), or anyone aspiring to develop their knowledge beyond the Explore pathway. This pathway builds on the themes introduced in Explore.
The Embed Pathway
Step 1 - National Approach
| Read |
In 2021, the Scottish Government published a framework to help ensure Scotland is digitally secure and cyber resilient. The framework outlines four outcomes that it is useful to be aware of: Link: The Strategic Framework for a Cyber Resilient Scotland |
| Question |
The framework stresses the importance of people being able to identify and manage cyber risks.
|
| Task |
| Find out what help and training is available across your organisation to support staff to build their cyber security knowledge, and ensure that your colleagues are aware of this. |
Step 2 - Cyber Safe Practice
| Read |
The Information Commissioner's Office (ICO) is the UK's independent authority responsible for upholding information rights in the public interest and promoting data privacy for individuals, acting as a regulator for data protection and information rights law. This page on their website contains practical tips for ensuring cyber safety in the workplace. Link: 11 practical ways to keep your IT systems safe and secure |
| Question |
Reflecting on the ICO's advice, do you think you and your colleagues are cyber safe at work? Is there more that you could do to implement the guidance? |
Step 3 - Cyber Security in Health and Social Care
| Question |
| Why do you think health and social care services are targeted by cyber attackers? |
| Read |
This information from the World Health Organisation (WHO) looks specifically at cyber security across health and social care services: |
| Reflect |
| The WHO information explains how cyber attacks can impact those who use services in a number of ways, one of which is through the locking of access to critical systems. Thinking about the systems you use within your role, how would blocked access to these affect those you support and your wider organisation? |
Step 4 - Lessons Learnt: NHS
| Read |
Recent cyber attacks on health and social care services include an attack that targeted a number of NHS hospitals in London in June 2024. This blog post explains how the attack occurred and looks at what measures might have prevented it: |
| Task |
| Take some time to research recent cyber attacks or threats to services like your own. Can you find out how cyber attackers are targeting organisations like yours? How can you use this information to help build vigilance amongst you and your colleagues? |
Step 5 - Test Your Cyber Knowledge
| Task |
Now you have developed your awareness of cyber security, test your knowledge by completing this short quiz. Once you have worked through the questions, you can submit and then review your answers to look into any that were incorrect: |
What Next?
You have now completed the Embed pathway.
Pathway Update Notifications
You can access this Pathways Update Notifications Form to register to receive email notifications when pathway content is updated or new resources are added.
Feedback
To share any comments or questions you have about the pathway please email nes.dew@nhs.scot. You can also let us know if any of the links aren’t working, or the resources aren’t available.
