FOI Ref: 0110FOI2021

3rd November 2020

Freedom of Information Act 2000 – Request for Information

We are pleased to respond to your request for information and our response is set out below:

Request /Response

Under the Freedom of Information Act 2000 may I kindly request the following information about your IT Infrastructure Information. The information needed is as follows:

1. SECURITY / CYBERSECURITY:

What SEIM (Security Event and Incident Management) solution is used by your organisation? 

Microsoft Advanced Threat Protection (ATP)

Solarwinds Security Event Manager (SEM)

2. When does your SEIM platform license subscription come up for renewal?

ATP – unknown – this is provided by a national NHS agreement

Solarwinds SEM – 25/11/22

3. If the SEIM (Security Event and Incident Management) solution was purchased via third party please disclose the contracting party’s details?

ATP – NHS Digital

Solarwinds SEM – Phoenix Software          

4. Do you outsource your security management to a third party (managed security service provider)? If so can you disclose the name of the managed security service provider.

N/A

5. When does the current service contract from the current managed security service provider end?

N/A

6. Can you provide the email address of the individual that is responsible for your IT Security?

Deputy Director of IT, sheccg.sheffieldccg@nhs.net

7. ICO - breaches:

How many cyber security breaches has your organisation had over the past 2 yrs? 

None