NHS Identity and Access Management Summit

Technology & Innovation

09:00 am
09 Oct, 2024
15 Hatfields Conference Centre, London SE1 8DJ

NHS Identity and Access Management Summit

Technology & Innovation

09:00 am
09 Oct, 2024
15 Hatfields Conference Centre, London SE1 8DJ

Job titles includes

Deputy Director Architecture & Cyber

Digital Business Partner

Data Protection Officer

People Digital Senior Programme Manager

120
Delegates Registered

Organisations Involved

SWL ICS

NHS Coventry & Warwickshire ICB

Frimley Integrated Care Board

BLMK ICB

Current Landscape:

The landscape of Identity and Access Management (IAM) within the NHS has grown increasingly intricate. The surge in digital healthcare systems, alongside escalating cybersecurity threats and the imperative to ensure secure yet seamless access to sensitive patient data, has created a critical need for sophisticated IAM solutions.

These solutions must adeptly manage identities, control access, and protect patient information across a myriad of healthcare platforms and devices.

In this evolving landscape, the balance between clinical IAM and consumer experience is paramount. Effective IAM must not only safeguard patient data and comply with stringent regulatory requirements but also provide a smooth and intuitive user experience for both healthcare professionals and patients.

 Ensuring that healthcare staff can quickly and securely access necessary information without compromising patient privacy is a key challenge that requires innovative and patient-centric solutions.

Timeliness of Event:

The NHS Identity and Access Management Summit 2024 arrives at a pivotal moment. The healthcare sector is undergoing rapid digitisation, facing heightened regulatory demands, and confronting new security challenges. Healthcare organisations are striving to implement effective IAM strategies that can address these multifaceted issues. This summit provides a timely and essential platform to tackle these challenges, share best practices, and explore innovative solutions that enhance both clinical IAM and consumer experience.

Key Event Subjects:

  1. Streamlining Clinical Access: Focus on strategies to ensure quick and secure access for healthcare professionals to patient data. Discuss the implementation of single sign-on solutions and role-based access controls that enhance clinical efficiency while maintaining stringent security protocols.
  2. Enhancing Patient Portals: Explore ways to improve patient portals to provide a seamless and secure user experience. Topics include intuitive design, easy navigation, and robust authentication methods that protect patient data without hindering access.
  3. Consent Management: Examine effective consent management platforms that give patients control over their data. Discuss how to implement transparent consent processes that build patient trust and comply with regulatory requirements.
  4. Integrating Emerging Technologies: Assess the role of technologies such as biometrics and AI in improving IAM practices. Evaluate how these technologies can enhance both security and user experience, making access to healthcare services more intuitive and secure.
  5. Real-World Implementations: Present case studies focusing on successful IAM initiatives that have balanced clinical needs with consumer experience. Highlight practical insights and lessons learned from these implementations to guide future projects.

Why Attend:

Attending the NHS Identity and Access Management Summit 2024 offers invaluable insights from industry experts, thought leaders, and IAM practitioners on navigating the complexities of healthcare IAM, providing a balance between robust security measures and a seamless consumer experience.

Participants will have the opportunity to connect with peers, stakeholders, and solution providers, fostering the exchange of ideas and the formation of partnerships, while staying informed about the latest trends in healthcare identity and access management

The event promises practical takeaways, including actionable strategies, tools, and methodologies to strengthen IAM capabilities, enhance security posture, and drive operational efficiency within healthcare organisations.

Attendees will also gain a thorough understanding of the latest regulatory requirements and compliance standards impacting healthcare IAM, ensuring their organisations align with industry best practices and regulatory mandates while maintaining user-friendly access controls.

The NHS Identity and Access Management Summit 2024 is an essential event for healthcare IT professionals, security practitioners, compliance officers, and stakeholders. It is dedicated to safeguarding patient data, ensuring regulatory compliance, and driving digital transformation within the healthcare sector while balancing clinical needs with an exceptional consumer experience.

Headline Sponsor

Who will Attend

  • Chief Information Officer (CIO)
  • Chief Technology Officer (CTO)
  • IT Security Manager
  • Data Protection Officer
  • Information Governance Manager
  • Cyber Security Analyst
  • Network Security Engineer
  • IAM Architect
  • Digital Identity Specialist
  • Access Control Manager
  • IT Infrastructure Manager
  • Clinical Informatics Manager
  • Health Information Manager
  • Digital Transformation Lead
  • IT Project Manager (with a focus on security projects)
  • System Administrator (with a focus on security)
  • Compliance Officer (with a focus on IT and data security)
  • Risk Management Specialist (IT and cyber risk)
  • Application Security Manager
  • Electronic Patient Record (EPR) System Manager

The programme

09:00

Registration and Breakfast

Registration - Open from 9:00 am - Closes at 11:00 am

All delegates must complete their registration process before the 11:00 AM cut-off time. Please arrive in a timely manner to allow for registration and to avoid any inconvenience. Delegates who arrive after the registration deadline will be refused entry to the event.

We appreciate your cooperation in helping us maintain the event's schedule and ensuring that everyone can fully participate in the Identity Access Management Conference. If you have any questions or require assistance, our event staff will be available to assist you with the registration process.

Thank you for your understanding, and we look forward to an insightful and productive event together!

10:00

Chair Opening Address (Confirmed)

Bharat Thakrar
CISO
CyberBTX

Chair Opening Address (Confirmed)

10:05

Keynote presentation - User authentication and access: Supporting staff to succeed? (Confirmed)

Steven Furnell
Professor of Cyber Security
University of Nottingham

User authentication is a fundamental and essential element of cyber security and data protection.  However, the resulting user experience can be significantly varied, depending on the specifics of the approaches involved, and the extent to which the users themselves have been guided and supported in the process. The presentation considers the potential challenges inherent in enabling authentication technologies to be used effectively, and potential pitfalls from the user and management perspectives.

10:25

Panel Discussion: Navigating Security Challenges in NHS Identity and Access Management

Steven Furnell
Professor of Cyber Security
University of Nottingham
Sally Berrill
Head of Data Security and Protection
University Hospitals of Northamptonshire

This panel will delve into the intricate landscape of security challenges faced by the NHS in managing identities and access. It will explore strategies to address vulnerabilities, mitigate risks, and ensure robust authentication and authorisation processes within the healthcare system.

  • Steven Furnell, Professor of Cyber Security, University of Nottingham (Confirmed)
  • Sally Berrill, Head of Data Security and Protection, University Hospitals of Northamptonshire (Confirmed)

10:55

Main Sponsor - Unified Identity Protection to stop identity-based attacks

James Burchell
Sales Engineer Manager
CrowdStrike

Main Sponsor - CrowdStrike

Modern Attacks are getting faster and more sophisticated with adversaries like Scattered Spider and Cozy Bear increasingly using valid credentials to move laterally undetected within an organization’s environment. These stealthy identity-based attacks span both on-prem AD and cloud identity providers like Entra ID. Learn how CrowdStrike’s Falcon Identity Protection provides unified identity protection across hybrid identity environments to detect lateral movement, enforce risk-based conditional access and stop identity-based attacks.

11:15

Morning Break

Morning Break

12:15

Chair Morning Reflection (Confirmed)

Bharat Thakrar
CISO
CyberBTX

Chair Morning Reflection (Confirmed)

12:20

Case Study - Sailpoint

Case Study - Sailpoint

12:40

Case Study - Enhancing NHS Identity Access Management: How Silverfort protects healthcare organisations by extending existing MFA and IAM solutions to legacy on-prem environments and non-human identities.

Josh Neame
CTO
BlueFort Security
Peter Batchelor
Regional Sales Director
Silverfort

Case Study - Bluefort

Synopsis: Join BlueFort Security, a leading Security Solutions Provider, and cybersecurity vendor Silverfort for an insightful session on how their partnership can greatly assist the NHS in navigating the complexities of MFA and IAM requirements outlined in the NCSC Cyber Assessment Framework (CAF) Silverfort’s Unified Identity Protection Platform enhances the NHS's cybersecurity by enforcing adaptive policies and secure access controls across all resources, access interfaces, and users, spanning modern, hybrid, and legacy environments. The session will also showcase how Silverfort successfully supported a large healthcare organisation’s Incident Response effort during a ransomware attack, facilitating a swift and secure recovery. Finally, we will discuss how BlueFort Security, as Silverfort’s premier partner, ensures expert deployment, configuration, and ongoing optimisation to maximize the technology’s value, thereby strengthening the NHS’s overall security resilience.

13:00

Fireside Interview Session: Barry Richardson, Head of Cyber Security and Information Security, NHS Blood and Transplant (Provisionally Confirmed)

Barry Richardson
Head of Cyber Security and Information Security
NHS Blood and Transplant

"Who Are You? Navigating Identity and Access Management in the NHS"

Key Points:

Understanding the Identity Ask in the NHS:

  • Explore the unique identity and access management challenges faced by the NHS.
  • Identify the key requirements and expectations for a robust identity management system.

Vision for the Future:

  • Envision the ideal state of identity management in the NHS.
  • Highlight the benefits and potential outcomes of achieving this vision.

The Path to Improvement:

  • Outline the strategic steps and practical measures to transition from current practices to desired outcomes.
  • Discuss the importance of organisational buy-in, technology adoption, and continuous improvement.

Session Goals:

  • To provide a clear understanding of the current identity management landscape within the NHS.
  • To inspire attendees with a vision for improved identity and access management.
  • To offer practical guidance and a step-by-step approach for achieving enhanced security and efficiency in identity management.

Join Barry Richardson as he shares his expertise and leads you on a journey from identifying current cyber risks to realising a future where identity and access management are seamlessly integrated and highly secure within the NHS.

13:20

Case Study - Protecting the most at risk identities across the NHS

David Higgins
Field CTO
CyberArk

Case Study - CyberArk

In the rapidly changing healthcare sector, CyberArk serves as a vital protector of cybersecurity, securing critical assets such as patient data and healthcare IT systems as organizations undergo digital transformations. Our all-encompassing Identity Security Platform enables organizations to adopt new technologies securely, safeguarding sensitive information and upholding patient trust.
 
David will discuss how CyberArk supports NHS Trusts in addressing these challenges, presenting best practices and outlining innovative solutions that improve both clinical Identity and Access Management (IAM) and consumer experience.

13:40

Lunch and Networking

Lunch and Networking

14:25

Chair Afternoon Reflection (Confirmed)

Bharat Thakrar
CISO
CyberBTX

Chair Afternoon Reflection (Confirmed)

14:30

Case Study - Preventing Endpoint Ransomware in Healthcare

James Millington
VP
Product Marketing

Case Study - IGEL

The NHS Cloud Strategy aims to deliver a flexible, cost effective and environmentally sustainable infrastructure. This session will show how a cloud strategy enables a fundamental rethink of the endpoint strategy to deliver on these promises whilst significantly improving security and integrating with IAM, UEM and SASE for a Zero Trust Architecture.  

14:50

Fireside Chat: How Identity Management will play a crucial role in achieving the NHS’s priorities for 2024/25!

Stephen Williams
Founder and Managing Director
Atlas Identity (An Intragen Group Company)
Justin Woolen
Public Sector Director
Okta UK

Atlas Identity and Okta will discuss how Identity Management will play a crucial role in achieving the NHS’s priorities for 2024/25, focused on ensuring secure and efficient access to healthcare systems and data. This involves:

  • Enhancing Security: Protecting patient data and healthcare systems from unauthorised access and cyber threats.
  • Improving Access: Streamlining the process for healthcare professionals to access necessary information quickly and securely.
  • Supporting Integration: Facilitating the seamless integration of various healthcare services and systems, improving overall efficiency.
  • Compliance: Ensuring that all identity management practices comply with relevant regulations and standards.

These efforts will help the NHS focus on improving service quality, patient safety, and operational efficiency.

15:10

Keynote Presentation - Insidious Insiders: Managing The Threat

Mr Julian Fisher
Author and Intelligence Consultant
Africa Integrity Services Ltd

The insider threat can defeat the most sophisticated physical and data access controls. The threat is so significant that effective mitigation requires an organisation-wide culture shift. How to train key personnel to detect and combat the threat.

15:30

Hot Buffet Food & Drinks

Hot Buffet Food & Drinks

17:00

End of Day

End of Day

Convenzisvents

Your Pass Includes....

  • Multiple live keynote presentations
  • Live examples of both NHS and Commercial best practice
  • Breakfast, Lunch and Refreshments included 
  • Meet the supplier sessions.
  • Networking opportunity
  • Live Q&A sessions with all speakers on the day
  • Drinks receptions (subject to event)
  • CPD accreditation
  • Prize draws

Tickets For NHS Senior Managers

We have an invite only option for NHS Senior Managers for our conference, to see if you qualify for a complimentary place please click the button below.

Register your place

Our accreditations

abpco 2021
Manchester Bee
CPD Member
Living Wage Member
Good Employment - Sponsor
Good Employment - Member
Armed Forces Covenant
Tech UK
IHSCM
FSB
Ban The Box
Faculty of Clinical Informatics
Stockport County
cpdgroup