CONNECTING CLOUD ENVIRONMENTS TO HSCN

Transcription

1 CONNECTING CLOUD ENVIRONMENTS TO HSCN Anton Murphy Business Development Manager, Redcentric 28 th June 2017 NHS Security & Compliance Day, AWS Summit London Slide 1 Redcentric 2017

2 AGENDA Re-cap N3 Connectivity for AWS UK Region HSCN Consumer Obligations News Connecting to HSCN HSCN: What and When Types of Consumer Procurements Types of HSCN Users Redcentric s Heritage Peering Exchange Redcentric and Health & Care CN-SPs and their Obligations Questions Slide 2 Redcentric 2017

3 RESILIENT N3 ACCESS FOR AWS UK REGION Slide 3 Redcentric 2017

4 MANAGED ON-BOARDING AND COMPLIANCE Pre-Assured Agile Implementation for AWS Reference Architecture & Templates Includes Compliance, Ready-for-Use confirmation (formal Authority to Proceed) and ongoing Redcentric Governance Key Steps: Healthcare Information Governance Connectivity Assurance Process (HIGCAP): N3 Access Application Form, confirmation of NHS Sponsor and business justification details Healthcare Logical Connection Architecture (HCLA): design document for the service Technical Threat Assessment: details the success criteria for the HCLA Associated documentation includes: N3 Connectivity Assurance Policy: statement of what is permitted when using the service N3 Acceptable Use Policy: incorporating signed declaration Slide 4 Redcentric 2017

5 NEWS Slide 5 Redcentric 2017

6 WHAT AND WHEN IS HSCN HSCN IS MADE UP OF SIX KEY COMPONENTS. Slide 6 Redcentric 2017

7 HSCN THE KEY STAGES Peering Exchange deployment DONE Transition Network (TN) implementation by N3SP (BT) underway First HSCN-compliant CN-SPs from May, including Redcentric Proof of Concept migrations underway Early Adopter Programme migrations September Full Migration Waves from December Ramp-up to peak volume of NHS migrations January - May 2018 Transition Plan is managed entirely by Redcentric at YOUR pace N3 and TN will turn off no later than March 2019 CN-SP s Consumer Network Service Provider Services Slide 7 Redcentric 2017

8 TYPES OF HSCN USER Peering Exchange Services Provider Consumer Network Service Providers (CN-SPs) NHS Consumer (Blue Badge) Commercial / NHS Providers / Suppliers (ISV) Ultimately - Citizens / Patients Slide 8 Redcentric 2017

9 PEERING EXCHANGE Slide 9 Redcentric 2017

10 CONSUMER NETWORK SERVICE PROVIDERS (CN-SP) Must meet rigorous HSCN compliance model Provides network services to HSCN consumers Validates HSCN connection agreements Provision of overlay services Provision of Internet access Delivers network controls enforced by the HSCN Programme (Next Slide) Slide 10 Redcentric 2017

11 KEY CN-SP OBLIGATIONS Provide IPFix data to the HSCN SOC from Consumer traffic entering the HSCN Work with HSCN SOC / NHS Digital CareCERT to resolve security incidents Check for malware at Internet breakout points Configure firewalls with minimum ruleset set by NHS Digital policy Use HSCN DNS services for traffic routed through the HSCN Connects Consumers CN-SP s Consumer Network Service Provider Services IPFix Internet Protocol Flow Information Export SOC Security Operations Centre DNS Domain Name Servers Slide 11 Redcentric 2017

12 KEY OBLIGATIONS FOR CONSUMERS THE CONNECTION AGREEMENT REPLACES NHS DIGITAL IGSOC (& REDCENTRIC HIGCAP) FOR ACCESS TO THE NETWORK AND IS DESIGNED TO SIMPLIFY HSCN ONBOARD. Incident reporting Cyber and Information security Network monitoring Securing information Access controls HSCN service information Data protection and processing ** Connection Agreement - Additional Information spreadsheet also needs completing Slide 12 Redcentric 2017

13 CONNECTING TO HSCN Maintenance of IGT still required and you agree to: Maintain your HSCN consumer profile Comply with all applicable IG requirements HSCN Advanced Network Monitoring (ANM) Service packet monitoring and inspection HSCN Network Analytics Service (NAS) will monitor you network connection points NAS Network Analytics Service IGT Information Governance Toolkit IG Information Governance Slide 13 Redcentric 2017

14 TYPES OF CONSUMER PROCUREMENTS Slide 14 Redcentric 2017

15 REDCENTRIC S HERITAGE Slide 15 Redcentric 2017

16 REDCENTRIC AND HEALTH & CARE 110m revenue, 82% recurring, 23% EBITDA and 8% organic growth Managed network and Cloud services are part of our DNA Health and Care is our largest sector Largest N3 Commercial Aggregator e.g. Pharmacy, ISVs, Managed Service Providers Hosting/Cloud Services for National Programmes eg. Spine 2 and e-rs Dec 2016: N3 Connectivity for AWS UK Region Launch Jan 2017: awarded Contract for HSCN Peering Exchange Services May 2017: charter HSCN-compliant CN-SP July 2017: HSCN Connectivity Charging Model for AWS UK Region Customers & APN Consulting Partners Slide 16 Redcentric 2017

17 ANY QUESTIONS? MARK HALL (CHIEF ASSURANCE OFFICER & N3/HSCN TECHNICAL AUTHORITY) TEL: VISIT: Slide 17 Redcentric 2017