Training activity information

Details

Review and identify the data protection and cyber security risks of a clinical system or key clinical infrastructure, develop appropriate mitigations and update the safety case report

Type

Developmental training activity (DTA)

Evidence requirements

Evidence the activity has been undertaken by the trainee​.

Reflection on the activity at one or more time points after the event including learning from the activity and/or areas of the trainees practice for development.

An action plan to implement learning and/or to address skills or knowledge gaps identified.

Considerations

  • Hazard logs, risk assessments
  • Cost, procurement and contracts
  • Collaboration with local and national ICT cyber-security teams
  • Agreement and assignment of responsibilities and accountabilities e.g. Clinical Safety Officer(s)
  • Local, national or international policies, procedures and guidance
  • External security accreditation
  • Risk assessments
  • Software and hardware systems
  • Medical device management and maintaining clinical and patient safety
  • Lifecycle management for data protection and cyber security measures

Relevant learning outcomes

# Outcome
# 1 Outcome

Review and prepare appropriate documentation for clinical information systems.

# 2 Outcome

Review and identify data protection and cyber security risks for clinical information systems and develop and implement appropriate mitigation strategies.