Following the cyber attacks in 2017, it was clear many NHS IT infrastructures were vulnerable to future attacks for various reasons: lack of compliance, end of life equipment, unsupported maintenance, governance, the list goes on. The drive for cyber and compliance assurance became key for many NHS organisations. Salford Royal NHS Foundation Trust knew that if it were to be fully assured, it required a truthful view of its network – to have greater visibility of compliance and assurance issues to be able to proactively address them.
Salford Royal NHS Foundation Trust (SRFT) is an integrated provider of hospital, community, social care and primary care services and is a University Teaching Trust. Salford Royal is part of the Northern Care Alliance NHS Group with Pennine Acute NHS Hospitals Trust. The Group is one of the largest healthcare providers in the country, serving a population of over one million people across its local communities. Salford Royal’s team of 7,000 staff members provide local services to the City of Salford and specialist services to Greater Manchester and beyond. The Trust is an ‘Outstanding’ organisation, as rated by the Care Quality Commission. Outstanding is the highest rating given by the CQC and in 2015 Salford Royal was the first Trust in the North of England to achieve this rating. The organisation retained this rating following its 2018 inspection.