SlideShare a Scribd company logo

Certifying Secure Health Data Research

Download as PPTX, PDF
Jisc
Jisc

Presentation from the Jisc security conference 2016 www.jisc.ac.uk

Technology
1 of 31
Certifying and Securing aTrusted Environment for Health Informatics Research data Dr Jonathan Monk, Director of IT, University of Dundee 1/11/2016
Health Informatics Centre dundee.ac.uk/hic Dr Jonathan Monk Director of IT University of Dundee Certifying and Securing a Trusted Environment for Health Informatics Research data
Health Informatics Centre dundee.ac.uk/hic 1. Overview of Health Informatics 2. Research Data Management Platform 3. Safe Haven Architecture 4. ISO27001 Certification
Health Informatics Centre dundee.ac.uk/hic Overview of Health Informatics
Health Informatics Centre dundee.ac.uk/hic Geographic - Tayside And Fife Population of Scotland Time Period 1972 - 2016 Electronic Medical Data Coverage
Health Informatics Centre dundee.ac.uk/hic Parents Conception Birth Early Life Childhood Adulthood Late Life Death Research Datasets • GoDARTS Diabetes – 18K - Case/Controls • TASC FORCE – 5000 - MRA Volunteers • POPADAD – 1200 - Diabetes with no CVD • TRACE RA – 3200 - Rheumatoid Arthritis/UK Pre-consented Cohorts  SHARE – 100+K  Generation Scotland – 20K SMR02 Maternity & Neonate Walker 48,00 Births (1952-1966) Health Care Data  Primary Care : Community Prescribing  Secondary Care : Out Patient Visits, Hospital Admissions, Accident & Emergency, Cancer Register, Psychiatric Episodes.  Diagnostics : Radiology Events, Cardiology & Vascular Labs, Bowel Screening  Laboratory - Biochemistry, Haematology, Immunology, Microbiology, Virology  Diabetes Surveillance - BP,BMI, Smoking Alcohol, Amputations, Ulcers  Diabetic Retinal Images – DRS Retinopathy Image Library (Go DARTS Population) Disease Registers • TARDIS Respiratory Disease • SDCRN – Scottish Dementia Network • SCI Diabetes • Epilepsy Child Health Pre-School/School SIRS/CHSP Register Of Deaths DataForLinkageExistingResearch StudiesPhenotypic Data Available
Health Informatics Centre dundee.ac.uk/hic Data Linkage Through Family Generations 2004 - Community Prescribing (Dispensed) 2016 1986 - Acute Hospital Admission Tayside 1975 - Births and Neonatal Record 1986 - Laboratory ( Biochemistry, Haematology, Immunology, Microbiology) 1994 - Radiology Records 1952 Walker Dataset 1952 – 66 48,000 Dundee Births Babies Mothers Fathers 1980 – Cancer Register 1990 – Diabetes Records Cohort participants episodes recorded in dataset
Health Informatics Centre dundee.ac.uk/hic
Health Informatics Centre dundee.ac.uk/hic Controls  Ratio : 3:1  Match on Age, Sex, SIMD Feasibility Searches Inclusion:  Health Board : Tayside  Status : Alive  Conditions : Type 2 Diabetes  Age: >= 65  Prescribed : Insulin > 2yrs Exclude:  Prescribed: Statins Researcher Supplies Search Criteria Matches 570K 450K 120K 70K 9210
Health Informatics Centre dundee.ac.uk/hic
Health Informatics Centre dundee.ac.uk/hic Demography GRO ECHO There was a 22% overall reduction in all cause mortality with β blocker use Prescribing TARDIS Biochemistry MicrobiologyHaematology Case Study # 1 - β blockers: Their Effect in Managing Chronic Obstructive Pulmonary Disease (COPD) Setting Tayside, Scotland (2001–2010) Population 5977 patients aged >50 years with a diagnosis of COPD. BMJ. 2011; 342: d2549. 10.1136/bmj.d2549 P.M Short, S.I.W Lipworth, D.H.J Elder, S. Schembri, B.J. Lipworth.
Health Informatics Centre dundee.ac.uk/hic Hospital admissions GRO More than 400 lives are being lost each year because breast cancer patients fail to take the full course of the drug Tamoxifen due to "intolerable" side-effects Prescribing Br J Cancer. 2008 December 2; 99(11): 1763–1768. 10.1038/sj.bjc.6604758 McCowan, J Shearer, P T Donnan, J A Dewar, M Crilly, A M Thompson and T P Fahey Researcher Supplied Cohort Cancer patients from a Ninewells clinic Case Study #2: Tamoxifen adherence: Relationship to Mortality in Women with Breast Cancer
Health Informatics Centre dundee.ac.uk/hic Research Data Management Platform (RDMP) ‘Optimizing and Augmenting the Research Data Supply Chain` Labs SMR01 Prescribing Raw Data Data Import Databases Custom Extractions & Export Formats RDMP Labs SMR01 Prescribing Raw Data Data Import Structured Database Extraction + Export DataLoad Engine Research Data Warehouse Validate Clean Catalogue QualityChecks Project X Data Marts Validate Clean Catalogue QualityChecks Project Y Data Marts Validate Clean Catalogue QualityChecks DataExtraction Engine
Health Informatics Centre dundee.ac.uk/hic Data Set 1 Data Set 6 Data Set 2 Data Set 3 Data Set 4 Data Set 5 Data Set 1 Pseudo-CHI Data Set 2 Pseudo-CHI Data Set 6 Pseudo-CHI Data Set 3 Pseudo-CHI Data Set 4 Pseudo-CHI Data Set 5 Pseudo-CHI CHI and All Identifiable Data Data Set 1 Project -CHI Data Set 4 Project -CHI NHS Network University Network Data Repository Function of Safe Haven Analytic Platform of Safe Haven Virtual Environment – no data leaves
Health Informatics Centre dundee.ac.uk/hic • Extraction takes minutes • Data released is standardised – the same regardless of Data Analyst that completes the work • A history is recorded of all changes to data over time • Data released now will be in the same format as in 5 years from now • Metadata has been added • Methods for transforming and validations have been added across all data sets • Tools to manage and explore the data are available to Data Management team and researchers • Audit and Logging all automated • Major work towards integration of image and genomic data
Health Informatics Centre dundee.ac.uk/hic
Health Informatics Centre dundee.ac.uk/hic • Standard restrictive VDI solution • VMWare View / Horizon
Health Informatics Centre dundee.ac.uk/hic • AppVolumes used for Applications • Bring Your Own License • Lots of Application Variations!
Health Informatics Centre dundee.ac.uk/hic • There are many types of ISO Certification. • We have 27001:2013 – Certificate Number: 2016/2269 • ISO 27001:2013 is a specification for an information security management system (ISMS). An ISMS is a framework of policies and procedures that includes all legal, physical and technical controls involved in an organisation's information risk management processes. What is ISO27001?
Health Informatics Centre dundee.ac.uk/hic Why ISO27001 certification? • Independent set of standards – so rather than constantly having to think what documents and processes we should have in place and reinventing the wheel, ISO gives us this! • Gives confidence to other organisations we work with e.g. NHS, main University. • Reduces other documentation requirements for governance, as we can just reference ISO documentation. • Improves the working practices of HIC. This has been particularly the case with our hardware infrastructure. • Key towards Scottish Government Safe Haven Accreditation.
Health Informatics Centre dundee.ac.uk/hic Scottish Government Safe Haven Accreditation • 27001 standard controls PLUS some additional ones specific to Safe Havens. • Reviewed by Scottish Government eHealth. • Documentation Required: • Risk Assessment Doc • Mapping of Controls
Health Informatics Centre dundee.ac.uk/hic
Health Informatics Centre dundee.ac.uk/hic Scope “The provision of data to researchers via safe haven environment, secure patient recruitment, data collection using software tools, data entry, the development and operation of web based applications and all assets underpinning the provision of those services from the locations of HIC premises at Ninewells Hospital and data centres within the University of Dundee Campus”
Health Informatics Centre dundee.ac.uk/hic ISMS Controls Status with Statement of Applicability and Gaps
Health Informatics Centre dundee.ac.uk/hic ISO Controls – Made up of HIC specific ones and University/NHS general controls University of Dundee Security Policies University of Dundee HR Policies and Procedures (and NHS where appropriate as we have honorary contracts) HIC HR Procedures/Training/Policies HIC Security Policies A7: Human Resource SecurityA5: Information Security Policies A6: Organisation of Information security University of Dundee Security Policies HIC Security Policies, SOPS, Procedures, Work Instructions and Service Descriptions
Health Informatics Centre dundee.ac.uk/hic Document Types and Review Static & Formally Approved: HIC Exec & HIC Information Governance Committee • Policies • Standard Operating Procedures (SOPs) • Risk Management Doc • Information Security Management System (ISMS) Manual • Business Continuity Plan Just HIC Exec • Procedures Working Documents (technical): Relevant Technical Manager • Service Descriptions • Work Instructions • Asset and Responsibility Matrix • Disaster Recovery Plans • Infrastructure Diagrams
Health Informatics Centre dundee.ac.uk/hic Structure of Docs in Box Become aware of an improvement of our current procedure Take a copy of Procedure from “Live” folder and move to “Under Development”. Draft change using tracked changes. Ask Technical Manager to review. Technical Manager moves the doc they have approved to “Awaiting Approval Folder” and asks for it to be included in HIC Exec Meeting Agenda for review. If approved at HIC Exec either formally approved or sent to HIC Information Governance Committee for additional formal approval (if document type requires) Approved doc is moved to “Live” folder by HIC Admin Procedure Changes
Health Informatics Centre dundee.ac.uk/hic Infrastructure comprised UoD, HIC & NHS University of Dundee Network NHS Network HIC Managed Hardware HIC Managed Hypervisor Cluster HIC Managed Operating Systems HIC Managed Applications UoD Hardware UoD Hypervisor UoD OS UoD Applications HIC and UoD use identical platform technology and share locations Hardware & responsibility for management varies depending on specificity University of Dundee Data Centres NHS Locations
Health Informatics Centre dundee.ac.uk/hic Timelines • Help from University’s Information Security Officer (Graham McKay) to get us up to the required standard. • Passed our Stage 1 audit of our documentation in June 2015. • Passed our Stage 2 audit of our systems (do we do what we say we do in our documentation) in Jan 2016. • Passed second Stage 2 audit July 2016 • Now have full audits every 6 months for the next 3 years!
Health Informatics Centre dundee.ac.uk/hic Phil Appleby Jim Galloway Chris Hall Duncan HeatherEmily Jefferson Claire JonesGordon McAllister Keith MilburnLeandro Tramma Donald Scobbie Thomas Nind Guney Hanedan Graham McKay Many thanks to the people that did all the work!
Health Informatics Centre dundee.ac.uk/hic Questions?

Recommended

Connected health cities
Connected health citiesConnected health cities
Connected health citiesJisc
 
Strand 1: Connecting research and researchers: An introduction to ORCID by Ed...
Strand 1: Connecting research and researchers: An introduction to ORCID by Ed...Strand 1: Connecting research and researchers: An introduction to ORCID by Ed...
Strand 1: Connecting research and researchers: An introduction to ORCID by Ed...OAbooks
 
Data discovery and sharing at UCLH
Data discovery and sharing at UCLHData discovery and sharing at UCLH
Data discovery and sharing at UCLHJisc
 
NHS SE presentation
NHS SE presentationNHS SE presentation
NHS SE presentationJisc
 
Open access progress and sustainability
Open access progress and sustainabilityOpen access progress and sustainability
Open access progress and sustainabilityJisc
 
Jisc's new shared data centre
Jisc's new shared data centreJisc's new shared data centre
Jisc's new shared data centreJisc
 
Grampian safe haven, research data network
Grampian safe haven, research data networkGrampian safe haven, research data network
Grampian safe haven, research data networkJisc RDM
 
EC Open Access Co-ordination workshop - 4th May 2011
EC Open Access Co-ordination workshop - 4th May 2011EC Open Access Co-ordination workshop - 4th May 2011
EC Open Access Co-ordination workshop - 4th May 2011Jisc
 

Recommended

Connected health cities
Connected health citiesConnected health cities
Connected health citiesJisc
 
Strand 1: Connecting research and researchers: An introduction to ORCID by Ed...
Strand 1: Connecting research and researchers: An introduction to ORCID by Ed...Strand 1: Connecting research and researchers: An introduction to ORCID by Ed...
Strand 1: Connecting research and researchers: An introduction to ORCID by Ed...OAbooks
 
Data discovery and sharing at UCLH
Data discovery and sharing at UCLHData discovery and sharing at UCLH
Data discovery and sharing at UCLHJisc
 
NHS SE presentation
NHS SE presentationNHS SE presentation
NHS SE presentationJisc
 
Open access progress and sustainability
Open access progress and sustainabilityOpen access progress and sustainability
Open access progress and sustainabilityJisc
 
Jisc's new shared data centre
Jisc's new shared data centreJisc's new shared data centre
Jisc's new shared data centreJisc
 
Grampian safe haven, research data network
Grampian safe haven, research data networkGrampian safe haven, research data network
Grampian safe haven, research data networkJisc RDM
 
EC Open Access Co-ordination workshop - 4th May 2011
EC Open Access Co-ordination workshop - 4th May 2011EC Open Access Co-ordination workshop - 4th May 2011
EC Open Access Co-ordination workshop - 4th May 2011Jisc
 
UK data management environment and support
UK data management environment and supportUK data management environment and support
UK data management environment and supportJisc
 
LEARN Conference - How to cost
LEARN Conference - How to costLEARN Conference - How to cost
LEARN Conference - How to costJisc RDM
 
LEARN Final Conference: Tutorial Group | Using the LEARN Model RDM Policy
LEARN Final Conference: Tutorial Group | Using the LEARN Model RDM PolicyLEARN Final Conference: Tutorial Group | Using the LEARN Model RDM Policy
LEARN Final Conference: Tutorial Group | Using the LEARN Model RDM PolicyLEARN Project
 
Standardising research data policies, research data network
Standardising research data policies, research data networkStandardising research data policies, research data network
Standardising research data policies, research data networkJisc RDM
 
Supporting the community-owned open scholarly communications ecosystem
Supporting the community-owned open scholarly communications ecosystemSupporting the community-owned open scholarly communications ecosystem
Supporting the community-owned open scholarly communications ecosystemJisc
 
Why science needs open data – Jisc and CNI conference 10 July 2014
Why science needs open data – Jisc and CNI conference 10 July 2014Why science needs open data – Jisc and CNI conference 10 July 2014
Why science needs open data – Jisc and CNI conference 10 July 2014Jisc
 
Digital transformation to enable a FAIR approach for health data science
Digital transformation to enable a FAIR approach for health data scienceDigital transformation to enable a FAIR approach for health data science
Digital transformation to enable a FAIR approach for health data scienceVarsha Khodiyar
 
Towards Open Research
Towards Open ResearchTowards Open Research
Towards Open ResearchJisc RDM
 
LEARN Final Conference: Tutorial Group | Implementing the LEARN RDM Toolkit
LEARN Final Conference: Tutorial Group | Implementing the LEARN RDM ToolkitLEARN Final Conference: Tutorial Group | Implementing the LEARN RDM Toolkit
LEARN Final Conference: Tutorial Group | Implementing the LEARN RDM ToolkitLEARN Project
 
Making sense of open scholarly communications data - Jisc Digifest 2016
Making sense of open scholarly communications data - Jisc Digifest 2016Making sense of open scholarly communications data - Jisc Digifest 2016
Making sense of open scholarly communications data - Jisc Digifest 2016Jisc
 
Perspectives from the African Open Science Platform/Susan Veldsman
Perspectives from the African Open Science Platform/Susan VeldsmanPerspectives from the African Open Science Platform/Susan Veldsman
Perspectives from the African Open Science Platform/Susan VeldsmanAfrican Open Science Platform
 
Active research management and sharing
Active research management and sharingActive research management and sharing
Active research management and sharingJisc
 
Addressing the wicked problem of learning data privacy though principle and p...
Addressing the wicked problem of learning data privacy though principle and p...Addressing the wicked problem of learning data privacy though principle and p...
Addressing the wicked problem of learning data privacy though principle and p...Jisc
 
Lessons from the UK: Data access, patient trust & real-world impact with heal...
Lessons from the UK: Data access, patient trust & real-world impact with heal...Lessons from the UK: Data access, patient trust & real-world impact with heal...
Lessons from the UK: Data access, patient trust & real-world impact with heal...Varsha Khodiyar
 
EPFL Open Research Data - a Jisc perspective
EPFL Open Research Data - a Jisc perspectiveEPFL Open Research Data - a Jisc perspective
EPFL Open Research Data - a Jisc perspectiveChristopher Brown
 
H2020 open-data-pilot
H2020 open-data-pilotH2020 open-data-pilot
H2020 open-data-pilotSarah Jones
 
Paul Jeffreys - Research Integrity: Institutional Responsibility
Paul Jeffreys - Research Integrity: Institutional ResponsibilityPaul Jeffreys - Research Integrity: Institutional Responsibility
Paul Jeffreys - Research Integrity: Institutional ResponsibilityJisc
 
20160414 23 Research Data Things
20160414 23 Research Data Things20160414 23 Research Data Things
20160414 23 Research Data ThingsKatina Toufexis
 
The fourth paradigm: data intensive scientific discovery - Jisc Digifest 2016
The fourth paradigm: data intensive scientific discovery - Jisc Digifest 2016The fourth paradigm: data intensive scientific discovery - Jisc Digifest 2016
The fourth paradigm: data intensive scientific discovery - Jisc Digifest 2016Jisc
 
UK Research Data Management: overview to ADBU congress, 19 Sep 2013 by Laura ...
UK Research Data Management: overview to ADBU congress, 19 Sep 2013 by Laura ...UK Research Data Management: overview to ADBU congress, 19 Sep 2013 by Laura ...
UK Research Data Management: overview to ADBU congress, 19 Sep 2013 by Laura ...L Molloy
 
Cyber Crime - "Who, What and How"
Cyber Crime - "Who, What and How"Cyber Crime - "Who, What and How"
Cyber Crime - "Who, What and How"Jisc
 
Role of the CISO in Higher Education
Role of the CISO in Higher EducationRole of the CISO in Higher Education
Role of the CISO in Higher EducationJisc
 

More Related Content

What's hot

UK data management environment and support
UK data management environment and supportUK data management environment and support
UK data management environment and supportJisc
 
LEARN Conference - How to cost
LEARN Conference - How to costLEARN Conference - How to cost
LEARN Conference - How to costJisc RDM
 
LEARN Final Conference: Tutorial Group | Using the LEARN Model RDM Policy
LEARN Final Conference: Tutorial Group | Using the LEARN Model RDM PolicyLEARN Final Conference: Tutorial Group | Using the LEARN Model RDM Policy
LEARN Final Conference: Tutorial Group | Using the LEARN Model RDM PolicyLEARN Project
 
Standardising research data policies, research data network
Standardising research data policies, research data networkStandardising research data policies, research data network
Standardising research data policies, research data networkJisc RDM
 
Supporting the community-owned open scholarly communications ecosystem
Supporting the community-owned open scholarly communications ecosystemSupporting the community-owned open scholarly communications ecosystem
Supporting the community-owned open scholarly communications ecosystemJisc
 
Why science needs open data – Jisc and CNI conference 10 July 2014
Why science needs open data – Jisc and CNI conference 10 July 2014Why science needs open data – Jisc and CNI conference 10 July 2014
Why science needs open data – Jisc and CNI conference 10 July 2014Jisc
 
Digital transformation to enable a FAIR approach for health data science
Digital transformation to enable a FAIR approach for health data scienceDigital transformation to enable a FAIR approach for health data science
Digital transformation to enable a FAIR approach for health data scienceVarsha Khodiyar
 
Towards Open Research
Towards Open ResearchTowards Open Research
Towards Open ResearchJisc RDM
 
LEARN Final Conference: Tutorial Group | Implementing the LEARN RDM Toolkit
LEARN Final Conference: Tutorial Group | Implementing the LEARN RDM ToolkitLEARN Final Conference: Tutorial Group | Implementing the LEARN RDM Toolkit
LEARN Final Conference: Tutorial Group | Implementing the LEARN RDM ToolkitLEARN Project
 
Making sense of open scholarly communications data - Jisc Digifest 2016
Making sense of open scholarly communications data - Jisc Digifest 2016Making sense of open scholarly communications data - Jisc Digifest 2016
Making sense of open scholarly communications data - Jisc Digifest 2016Jisc
 
Perspectives from the African Open Science Platform/Susan Veldsman
Perspectives from the African Open Science Platform/Susan VeldsmanPerspectives from the African Open Science Platform/Susan Veldsman
Perspectives from the African Open Science Platform/Susan VeldsmanAfrican Open Science Platform
 
Active research management and sharing
Active research management and sharingActive research management and sharing
Active research management and sharingJisc
 
Addressing the wicked problem of learning data privacy though principle and p...
Addressing the wicked problem of learning data privacy though principle and p...Addressing the wicked problem of learning data privacy though principle and p...
Addressing the wicked problem of learning data privacy though principle and p...Jisc
 
Lessons from the UK: Data access, patient trust & real-world impact with heal...
Lessons from the UK: Data access, patient trust & real-world impact with heal...Lessons from the UK: Data access, patient trust & real-world impact with heal...
Lessons from the UK: Data access, patient trust & real-world impact with heal...Varsha Khodiyar
 
EPFL Open Research Data - a Jisc perspective
EPFL Open Research Data - a Jisc perspectiveEPFL Open Research Data - a Jisc perspective
EPFL Open Research Data - a Jisc perspectiveChristopher Brown
 
H2020 open-data-pilot
H2020 open-data-pilotH2020 open-data-pilot
H2020 open-data-pilotSarah Jones
 
Paul Jeffreys - Research Integrity: Institutional Responsibility
Paul Jeffreys - Research Integrity: Institutional ResponsibilityPaul Jeffreys - Research Integrity: Institutional Responsibility
Paul Jeffreys - Research Integrity: Institutional ResponsibilityJisc
 
20160414 23 Research Data Things
20160414 23 Research Data Things20160414 23 Research Data Things
20160414 23 Research Data ThingsKatina Toufexis
 
The fourth paradigm: data intensive scientific discovery - Jisc Digifest 2016
The fourth paradigm: data intensive scientific discovery - Jisc Digifest 2016The fourth paradigm: data intensive scientific discovery - Jisc Digifest 2016
The fourth paradigm: data intensive scientific discovery - Jisc Digifest 2016Jisc
 
UK Research Data Management: overview to ADBU congress, 19 Sep 2013 by Laura ...
UK Research Data Management: overview to ADBU congress, 19 Sep 2013 by Laura ...UK Research Data Management: overview to ADBU congress, 19 Sep 2013 by Laura ...
UK Research Data Management: overview to ADBU congress, 19 Sep 2013 by Laura ...L Molloy
 

What's hot (20)

UK data management environment and support
UK data management environment and supportUK data management environment and support
UK data management environment and support
 
LEARN Conference - How to cost
LEARN Conference - How to costLEARN Conference - How to cost
LEARN Conference - How to cost
 
LEARN Final Conference: Tutorial Group | Using the LEARN Model RDM Policy
LEARN Final Conference: Tutorial Group | Using the LEARN Model RDM PolicyLEARN Final Conference: Tutorial Group | Using the LEARN Model RDM Policy
LEARN Final Conference: Tutorial Group | Using the LEARN Model RDM Policy
 
Standardising research data policies, research data network
Standardising research data policies, research data networkStandardising research data policies, research data network
Standardising research data policies, research data network
 
Supporting the community-owned open scholarly communications ecosystem
Supporting the community-owned open scholarly communications ecosystemSupporting the community-owned open scholarly communications ecosystem
Supporting the community-owned open scholarly communications ecosystem
 
Why science needs open data – Jisc and CNI conference 10 July 2014
Why science needs open data – Jisc and CNI conference 10 July 2014Why science needs open data – Jisc and CNI conference 10 July 2014
Why science needs open data – Jisc and CNI conference 10 July 2014
 
Digital transformation to enable a FAIR approach for health data science
Digital transformation to enable a FAIR approach for health data scienceDigital transformation to enable a FAIR approach for health data science
Digital transformation to enable a FAIR approach for health data science
 
Towards Open Research
Towards Open ResearchTowards Open Research
Towards Open Research
 
LEARN Final Conference: Tutorial Group | Implementing the LEARN RDM Toolkit
LEARN Final Conference: Tutorial Group | Implementing the LEARN RDM ToolkitLEARN Final Conference: Tutorial Group | Implementing the LEARN RDM Toolkit
LEARN Final Conference: Tutorial Group | Implementing the LEARN RDM Toolkit
 
Making sense of open scholarly communications data - Jisc Digifest 2016
Making sense of open scholarly communications data - Jisc Digifest 2016Making sense of open scholarly communications data - Jisc Digifest 2016
Making sense of open scholarly communications data - Jisc Digifest 2016
 
Perspectives from the African Open Science Platform/Susan Veldsman
Perspectives from the African Open Science Platform/Susan VeldsmanPerspectives from the African Open Science Platform/Susan Veldsman
Perspectives from the African Open Science Platform/Susan Veldsman
 
Active research management and sharing
Active research management and sharingActive research management and sharing
Active research management and sharing
 
Addressing the wicked problem of learning data privacy though principle and p...
Addressing the wicked problem of learning data privacy though principle and p...Addressing the wicked problem of learning data privacy though principle and p...
Addressing the wicked problem of learning data privacy though principle and p...
 
Lessons from the UK: Data access, patient trust & real-world impact with heal...
Lessons from the UK: Data access, patient trust & real-world impact with heal...Lessons from the UK: Data access, patient trust & real-world impact with heal...
Lessons from the UK: Data access, patient trust & real-world impact with heal...
 
EPFL Open Research Data - a Jisc perspective
EPFL Open Research Data - a Jisc perspectiveEPFL Open Research Data - a Jisc perspective
EPFL Open Research Data - a Jisc perspective
 
H2020 open-data-pilot
H2020 open-data-pilotH2020 open-data-pilot
H2020 open-data-pilot
 
Paul Jeffreys - Research Integrity: Institutional Responsibility
Paul Jeffreys - Research Integrity: Institutional ResponsibilityPaul Jeffreys - Research Integrity: Institutional Responsibility
Paul Jeffreys - Research Integrity: Institutional Responsibility
 
20160414 23 Research Data Things
20160414 23 Research Data Things20160414 23 Research Data Things
20160414 23 Research Data Things
 
The fourth paradigm: data intensive scientific discovery - Jisc Digifest 2016
The fourth paradigm: data intensive scientific discovery - Jisc Digifest 2016The fourth paradigm: data intensive scientific discovery - Jisc Digifest 2016
The fourth paradigm: data intensive scientific discovery - Jisc Digifest 2016
 
UK Research Data Management: overview to ADBU congress, 19 Sep 2013 by Laura ...
UK Research Data Management: overview to ADBU congress, 19 Sep 2013 by Laura ...UK Research Data Management: overview to ADBU congress, 19 Sep 2013 by Laura ...
UK Research Data Management: overview to ADBU congress, 19 Sep 2013 by Laura ...
 

Viewers also liked

Cyber Crime - "Who, What and How"
Cyber Crime - "Who, What and How"Cyber Crime - "Who, What and How"
Cyber Crime - "Who, What and How"Jisc
 
Role of the CISO in Higher Education
Role of the CISO in Higher EducationRole of the CISO in Higher Education
Role of the CISO in Higher EducationJisc
 
Mitigation starts now
Mitigation starts nowMitigation starts now
Mitigation starts nowJisc
 
Protecting our customers - BT security
Protecting our customers - BT securityProtecting our customers - BT security
Protecting our customers - BT securityJisc
 
Data and information governance: getting this right to support an information...
Data and information governance: getting this right to support an information...Data and information governance: getting this right to support an information...
Data and information governance: getting this right to support an information...Jisc
 
GDPR: More reasons for information security
GDPR: More reasons for information securityGDPR: More reasons for information security
GDPR: More reasons for information securityJisc
 
Working with students and ISO27001
Working with students and ISO27001Working with students and ISO27001
Working with students and ISO27001Jisc
 
Information security at University of East London: the benefits (and pitfalls...
Information security at University of East London: the benefits (and pitfalls...Information security at University of East London: the benefits (and pitfalls...
Information security at University of East London: the benefits (and pitfalls...Jisc
 
Closing plenary and keynote from Lauren Sager Weinstein
Closing plenary and keynote from Lauren Sager WeinsteinClosing plenary and keynote from Lauren Sager Weinstein
Closing plenary and keynote from Lauren Sager WeinsteinJisc
 
Archiving data from Durham to RAL using the File Transfer Service (FTS)
Archiving data from Durham to RAL using the File Transfer Service (FTS)Archiving data from Durham to RAL using the File Transfer Service (FTS)
Archiving data from Durham to RAL using the File Transfer Service (FTS)Jisc
 
110G networking within JASMIN
110G networking within JASMIN110G networking within JASMIN
110G networking within JASMINJisc
 
Challenges in end-to-end performance
Challenges in end-to-end performanceChallenges in end-to-end performance
Challenges in end-to-end performanceJisc
 
Provisioning Janet
Provisioning JanetProvisioning Janet
Provisioning JanetJisc
 
Science DMZ
Science DMZScience DMZ
Science DMZJisc
 
Science DMZ at Imperial
Science DMZ at ImperialScience DMZ at Imperial
Science DMZ at ImperialJisc
 
Solving Network Throughput Problems at the Diamond Light Source
Solving Network Throughput Problems at the Diamond Light SourceSolving Network Throughput Problems at the Diamond Light Source
Solving Network Throughput Problems at the Diamond Light SourceJisc
 
Enabling efficient movement of data into & out of a high-performance analysis...
Enabling efficient movement of data into & out of a high-performance analysis...Enabling efficient movement of data into & out of a high-performance analysis...
Enabling efficient movement of data into & out of a high-performance analysis...Jisc
 
The Assessment Journey
The Assessment JourneyThe Assessment Journey
The Assessment JourneyJisc
 
Data and disadvantaged students - using learning analytics for inclusion
Data and disadvantaged students - using learning analytics for inclusionData and disadvantaged students - using learning analytics for inclusion
Data and disadvantaged students - using learning analytics for inclusionJisc
 
The Jisc UK ORCID consortium : Workshop 2
The Jisc UK ORCID consortium : Workshop 2The Jisc UK ORCID consortium : Workshop 2
The Jisc UK ORCID consortium : Workshop 2Jisc
 

Viewers also liked (20)

Cyber Crime - "Who, What and How"
Cyber Crime - "Who, What and How"Cyber Crime - "Who, What and How"
Cyber Crime - "Who, What and How"
 
Role of the CISO in Higher Education
Role of the CISO in Higher EducationRole of the CISO in Higher Education
Role of the CISO in Higher Education
 
Mitigation starts now
Mitigation starts nowMitigation starts now
Mitigation starts now
 
Protecting our customers - BT security
Protecting our customers - BT securityProtecting our customers - BT security
Protecting our customers - BT security
 
Data and information governance: getting this right to support an information...
Data and information governance: getting this right to support an information...Data and information governance: getting this right to support an information...
Data and information governance: getting this right to support an information...
 
GDPR: More reasons for information security
GDPR: More reasons for information securityGDPR: More reasons for information security
GDPR: More reasons for information security
 
Working with students and ISO27001
Working with students and ISO27001Working with students and ISO27001
Working with students and ISO27001
 
Information security at University of East London: the benefits (and pitfalls...
Information security at University of East London: the benefits (and pitfalls...Information security at University of East London: the benefits (and pitfalls...
Information security at University of East London: the benefits (and pitfalls...
 
Closing plenary and keynote from Lauren Sager Weinstein
Closing plenary and keynote from Lauren Sager WeinsteinClosing plenary and keynote from Lauren Sager Weinstein
Closing plenary and keynote from Lauren Sager Weinstein
 
Archiving data from Durham to RAL using the File Transfer Service (FTS)
Archiving data from Durham to RAL using the File Transfer Service (FTS)Archiving data from Durham to RAL using the File Transfer Service (FTS)
Archiving data from Durham to RAL using the File Transfer Service (FTS)
 
110G networking within JASMIN
110G networking within JASMIN110G networking within JASMIN
110G networking within JASMIN
 
Challenges in end-to-end performance
Challenges in end-to-end performanceChallenges in end-to-end performance
Challenges in end-to-end performance
 
Provisioning Janet
Provisioning JanetProvisioning Janet
Provisioning Janet
 
Science DMZ
Science DMZScience DMZ
Science DMZ
 
Science DMZ at Imperial
Science DMZ at ImperialScience DMZ at Imperial
Science DMZ at Imperial
 
Solving Network Throughput Problems at the Diamond Light Source
Solving Network Throughput Problems at the Diamond Light SourceSolving Network Throughput Problems at the Diamond Light Source
Solving Network Throughput Problems at the Diamond Light Source
 
Enabling efficient movement of data into & out of a high-performance analysis...
Enabling efficient movement of data into & out of a high-performance analysis...Enabling efficient movement of data into & out of a high-performance analysis...
Enabling efficient movement of data into & out of a high-performance analysis...
 
The Assessment Journey
The Assessment JourneyThe Assessment Journey
The Assessment Journey
 
Data and disadvantaged students - using learning analytics for inclusion
Data and disadvantaged students - using learning analytics for inclusionData and disadvantaged students - using learning analytics for inclusion
Data and disadvantaged students - using learning analytics for inclusion
 
The Jisc UK ORCID consortium : Workshop 2
The Jisc UK ORCID consortium : Workshop 2The Jisc UK ORCID consortium : Workshop 2
The Jisc UK ORCID consortium : Workshop 2
 

Similar to Certifying Secure Health Data Research

UCSF Informatics Day 2014 - Sorena Nadaf, "Translational Informatics OnCore C...
UCSF Informatics Day 2014 - Sorena Nadaf, "Translational Informatics OnCore C...UCSF Informatics Day 2014 - Sorena Nadaf, "Translational Informatics OnCore C...
UCSF Informatics Day 2014 - Sorena Nadaf, "Translational Informatics OnCore C...CTSI at UCSF
 
International perspective for sharing publicly funded medical research data
International perspective for sharing publicly funded medical research dataInternational perspective for sharing publicly funded medical research data
International perspective for sharing publicly funded medical research dataARDC
 
Clinical trial data wants to be free: Lessons from the ImmPort Immunology Dat...
Clinical trial data wants to be free: Lessons from the ImmPort Immunology Dat...Clinical trial data wants to be free: Lessons from the ImmPort Immunology Dat...
Clinical trial data wants to be free: Lessons from the ImmPort Immunology Dat...Barry Smith
 
A standards-based approach to development of clinical registries
A standards-based approach to development of clinical registriesA standards-based approach to development of clinical registries
A standards-based approach to development of clinical registriesHealth Informatics New Zealand
 
A Standards-based Approach to Development of Clinical Registries - Initial Le...
A Standards-based Approach to Development of Clinical Registries - Initial Le...A Standards-based Approach to Development of Clinical Registries - Initial Le...
A Standards-based Approach to Development of Clinical Registries - Initial Le...Koray Atalag
 
Clinical Data Management Process Overview_Katalyst HLS
Clinical Data Management Process Overview_Katalyst HLSClinical Data Management Process Overview_Katalyst HLS
Clinical Data Management Process Overview_Katalyst HLSKatalyst HLS
 
Accessing data for research: data publishing pathways and the Five Safes
Accessing data for research: data publishing pathways and the Five SafesAccessing data for research: data publishing pathways and the Five Safes
Accessing data for research: data publishing pathways and the Five SafesLouise Corti
 
Development_data_standards_data_integration_tools
Development_data_standards_data_integration_toolsDevelopment_data_standards_data_integration_tools
Development_data_standards_data_integration_toolsRafael Romero
 
Data Virtualization Modernizes Biobanking
Data Virtualization Modernizes BiobankingData Virtualization Modernizes Biobanking
Data Virtualization Modernizes BiobankingDenodo
 
CDM_Process_Overview_Katalyst HLS
CDM_Process_Overview_Katalyst HLSCDM_Process_Overview_Katalyst HLS
CDM_Process_Overview_Katalyst HLSKatalyst HLS
 
AllTrials AAAS 2015 - Opportunities and Challenges for ClinicalTrials.gov
AllTrials AAAS 2015 - Opportunities and Challenges for ClinicalTrials.govAllTrials AAAS 2015 - Opportunities and Challenges for ClinicalTrials.gov
AllTrials AAAS 2015 - Opportunities and Challenges for ClinicalTrials.govSenseAboutSci
 
dkNET Webinar: Creating and Sustaining a FAIR Biomedical Data Ecosystem 10/09...
dkNET Webinar: Creating and Sustaining a FAIR Biomedical Data Ecosystem 10/09...dkNET Webinar: Creating and Sustaining a FAIR Biomedical Data Ecosystem 10/09...
dkNET Webinar: Creating and Sustaining a FAIR Biomedical Data Ecosystem 10/09...dkNET
 
ANDS health and medical data webinar 16 May. Storing and Publishing Health an...
ANDS health and medical data webinar 16 May. Storing and Publishing Health an...ANDS health and medical data webinar 16 May. Storing and Publishing Health an...
ANDS health and medical data webinar 16 May. Storing and Publishing Health an...ARDC
 
Registry Participation 101: A Step-by-Step Guide to What You Really Need to K...
Registry Participation 101: A Step-by-Step Guide to What You Really Need to K...Registry Participation 101: A Step-by-Step Guide to What You Really Need to K...
Registry Participation 101: A Step-by-Step Guide to What You Really Need to K...Wellbe
 
McGrath Health Data Analyst SXSW
McGrath Health Data Analyst SXSWMcGrath Health Data Analyst SXSW
McGrath Health Data Analyst SXSWRobert McGrath
 
Current ONC Standards Activities
Current ONC Standards ActivitiesCurrent ONC Standards Activities
Current ONC Standards ActivitiesJitin Asnaani
 

Similar to Certifying Secure Health Data Research (20)

UCSF Informatics Day 2014 - Sorena Nadaf, "Translational Informatics OnCore C...
UCSF Informatics Day 2014 - Sorena Nadaf, "Translational Informatics OnCore C...UCSF Informatics Day 2014 - Sorena Nadaf, "Translational Informatics OnCore C...
UCSF Informatics Day 2014 - Sorena Nadaf, "Translational Informatics OnCore C...
 
International perspective for sharing publicly funded medical research data
International perspective for sharing publicly funded medical research dataInternational perspective for sharing publicly funded medical research data
International perspective for sharing publicly funded medical research data
 
Markham2009
Markham2009Markham2009
Markham2009
 
Clinical trial data wants to be free: Lessons from the ImmPort Immunology Dat...
Clinical trial data wants to be free: Lessons from the ImmPort Immunology Dat...Clinical trial data wants to be free: Lessons from the ImmPort Immunology Dat...
Clinical trial data wants to be free: Lessons from the ImmPort Immunology Dat...
 
A standards-based approach to development of clinical registries
A standards-based approach to development of clinical registriesA standards-based approach to development of clinical registries
A standards-based approach to development of clinical registries
 
A Standards-based Approach to Development of Clinical Registries - Initial Le...
A Standards-based Approach to Development of Clinical Registries - Initial Le...A Standards-based Approach to Development of Clinical Registries - Initial Le...
A Standards-based Approach to Development of Clinical Registries - Initial Le...
 
Clinical Data Management Process Overview_Katalyst HLS
Clinical Data Management Process Overview_Katalyst HLSClinical Data Management Process Overview_Katalyst HLS
Clinical Data Management Process Overview_Katalyst HLS
 
Shifting the goal post – from high impact journals to high impact data
Shifting the goal post – from high impact journals to high impact data Shifting the goal post – from high impact journals to high impact data
Shifting the goal post – from high impact journals to high impact data
 
Accessing data for research: data publishing pathways and the Five Safes
Accessing data for research: data publishing pathways and the Five SafesAccessing data for research: data publishing pathways and the Five Safes
Accessing data for research: data publishing pathways and the Five Safes
 
Development_data_standards_data_integration_tools
Development_data_standards_data_integration_toolsDevelopment_data_standards_data_integration_tools
Development_data_standards_data_integration_tools
 
Data Virtualization Modernizes Biobanking
Data Virtualization Modernizes BiobankingData Virtualization Modernizes Biobanking
Data Virtualization Modernizes Biobanking
 
CDM_Process_Overview_Katalyst HLS
CDM_Process_Overview_Katalyst HLSCDM_Process_Overview_Katalyst HLS
CDM_Process_Overview_Katalyst HLS
 
AllTrials AAAS 2015 - Opportunities and Challenges for ClinicalTrials.gov
AllTrials AAAS 2015 - Opportunities and Challenges for ClinicalTrials.govAllTrials AAAS 2015 - Opportunities and Challenges for ClinicalTrials.gov
AllTrials AAAS 2015 - Opportunities and Challenges for ClinicalTrials.gov
 
dkNET Webinar: Creating and Sustaining a FAIR Biomedical Data Ecosystem 10/09...
dkNET Webinar: Creating and Sustaining a FAIR Biomedical Data Ecosystem 10/09...dkNET Webinar: Creating and Sustaining a FAIR Biomedical Data Ecosystem 10/09...
dkNET Webinar: Creating and Sustaining a FAIR Biomedical Data Ecosystem 10/09...
 
ANDS health and medical data webinar 16 May. Storing and Publishing Health an...
ANDS health and medical data webinar 16 May. Storing and Publishing Health an...ANDS health and medical data webinar 16 May. Storing and Publishing Health an...
ANDS health and medical data webinar 16 May. Storing and Publishing Health an...
 
Registry Participation 101: A Step-by-Step Guide to What You Really Need to K...
Registry Participation 101: A Step-by-Step Guide to What You Really Need to K...Registry Participation 101: A Step-by-Step Guide to What You Really Need to K...
Registry Participation 101: A Step-by-Step Guide to What You Really Need to K...
 
McGrath Health Data Analyst SXSW
McGrath Health Data Analyst SXSWMcGrath Health Data Analyst SXSW
McGrath Health Data Analyst SXSW
 
A Stocktake of New Zealand’s Healthcare Datasets
A Stocktake of New Zealand’s Healthcare DatasetsA Stocktake of New Zealand’s Healthcare Datasets
A Stocktake of New Zealand’s Healthcare Datasets
 
Spitzer datawarehouse
Spitzer datawarehouseSpitzer datawarehouse
Spitzer datawarehouse
 
Current ONC Standards Activities
Current ONC Standards ActivitiesCurrent ONC Standards Activities
Current ONC Standards Activities
 

More from Jisc

Procuring digital preservation CAN be quick and painless with our new dynamic...
Procuring digital preservation CAN be quick and painless with our new dynamic...Procuring digital preservation CAN be quick and painless with our new dynamic...
Procuring digital preservation CAN be quick and painless with our new dynamic...Jisc
 
International students’ digital experience: understanding and mitigating the ...
International students’ digital experience: understanding and mitigating the ...International students’ digital experience: understanding and mitigating the ...
International students’ digital experience: understanding and mitigating the ...Jisc
 
Digital Storytelling Community Launch!.pptx
Digital Storytelling Community Launch!.pptxDigital Storytelling Community Launch!.pptx
Digital Storytelling Community Launch!.pptxJisc
 
Open Access book publishing understanding your options (1).pptx
Open Access book publishing understanding your options (1).pptxOpen Access book publishing understanding your options (1).pptx
Open Access book publishing understanding your options (1).pptxJisc
 
Scottish Universities Press supporting authors with requirements for open acc...
Scottish Universities Press supporting authors with requirements for open acc...Scottish Universities Press supporting authors with requirements for open acc...
Scottish Universities Press supporting authors with requirements for open acc...Jisc
 
How Bloomsbury is supporting authors with UKRI long-form open access requirem...
How Bloomsbury is supporting authors with UKRI long-form open access requirem...How Bloomsbury is supporting authors with UKRI long-form open access requirem...
How Bloomsbury is supporting authors with UKRI long-form open access requirem...Jisc
 
Jisc Northern Ireland Strategy Forum 2023
Jisc Northern Ireland Strategy Forum 2023Jisc Northern Ireland Strategy Forum 2023
Jisc Northern Ireland Strategy Forum 2023Jisc
 
Jisc Scotland Strategy Forum 2023
Jisc Scotland Strategy Forum 2023Jisc Scotland Strategy Forum 2023
Jisc Scotland Strategy Forum 2023Jisc
 
Jisc stakeholder strategic update 2023
Jisc stakeholder strategic update 2023Jisc stakeholder strategic update 2023
Jisc stakeholder strategic update 2023Jisc
 
JISC Presentation.pptx
JISC Presentation.pptxJISC Presentation.pptx
JISC Presentation.pptxJisc
 
Community-led Open Access Publishing webinar.pptx
Community-led Open Access Publishing webinar.pptxCommunity-led Open Access Publishing webinar.pptx
Community-led Open Access Publishing webinar.pptxJisc
 
The Open Access Community Framework (OACF) 2023 (1).pptx
The Open Access Community Framework (OACF) 2023 (1).pptxThe Open Access Community Framework (OACF) 2023 (1).pptx
The Open Access Community Framework (OACF) 2023 (1).pptxJisc
 
Are we onboard yet University of Sussex.pptx
Are we onboard yet University of Sussex.pptxAre we onboard yet University of Sussex.pptx
Are we onboard yet University of Sussex.pptxJisc
 
JiscOAWeek_LAIR_slides_October2023.pptx
JiscOAWeek_LAIR_slides_October2023.pptxJiscOAWeek_LAIR_slides_October2023.pptx
JiscOAWeek_LAIR_slides_October2023.pptxJisc
 
UWP OA Week Presentation (1).pptx
UWP OA Week Presentation (1).pptxUWP OA Week Presentation (1).pptx
UWP OA Week Presentation (1).pptxJisc
 
An introduction to Cyber Essentials
An introduction to Cyber EssentialsAn introduction to Cyber Essentials
An introduction to Cyber EssentialsJisc
 
MarkChilds.pptx
MarkChilds.pptxMarkChilds.pptx
MarkChilds.pptxJisc
 
RStrachanOct23.pptx
RStrachanOct23.pptxRStrachanOct23.pptx
RStrachanOct23.pptxJisc
 
ISDX2 Oct 2023 .pptx
ISDX2 Oct 2023 .pptxISDX2 Oct 2023 .pptx
ISDX2 Oct 2023 .pptxJisc
 
FerrellWalker.pptx
FerrellWalker.pptxFerrellWalker.pptx
FerrellWalker.pptxJisc
 

More from Jisc (20)

Procuring digital preservation CAN be quick and painless with our new dynamic...
Procuring digital preservation CAN be quick and painless with our new dynamic...Procuring digital preservation CAN be quick and painless with our new dynamic...
Procuring digital preservation CAN be quick and painless with our new dynamic...
 
International students’ digital experience: understanding and mitigating the ...
International students’ digital experience: understanding and mitigating the ...International students’ digital experience: understanding and mitigating the ...
International students’ digital experience: understanding and mitigating the ...
 
Digital Storytelling Community Launch!.pptx
Digital Storytelling Community Launch!.pptxDigital Storytelling Community Launch!.pptx
Digital Storytelling Community Launch!.pptx
 
Open Access book publishing understanding your options (1).pptx
Open Access book publishing understanding your options (1).pptxOpen Access book publishing understanding your options (1).pptx
Open Access book publishing understanding your options (1).pptx
 
Scottish Universities Press supporting authors with requirements for open acc...
Scottish Universities Press supporting authors with requirements for open acc...Scottish Universities Press supporting authors with requirements for open acc...
Scottish Universities Press supporting authors with requirements for open acc...
 
How Bloomsbury is supporting authors with UKRI long-form open access requirem...
How Bloomsbury is supporting authors with UKRI long-form open access requirem...How Bloomsbury is supporting authors with UKRI long-form open access requirem...
How Bloomsbury is supporting authors with UKRI long-form open access requirem...
 
Jisc Northern Ireland Strategy Forum 2023
Jisc Northern Ireland Strategy Forum 2023Jisc Northern Ireland Strategy Forum 2023
Jisc Northern Ireland Strategy Forum 2023
 
Jisc Scotland Strategy Forum 2023
Jisc Scotland Strategy Forum 2023Jisc Scotland Strategy Forum 2023
Jisc Scotland Strategy Forum 2023
 
Jisc stakeholder strategic update 2023
Jisc stakeholder strategic update 2023Jisc stakeholder strategic update 2023
Jisc stakeholder strategic update 2023
 
JISC Presentation.pptx
JISC Presentation.pptxJISC Presentation.pptx
JISC Presentation.pptx
 
Community-led Open Access Publishing webinar.pptx
Community-led Open Access Publishing webinar.pptxCommunity-led Open Access Publishing webinar.pptx
Community-led Open Access Publishing webinar.pptx
 
The Open Access Community Framework (OACF) 2023 (1).pptx
The Open Access Community Framework (OACF) 2023 (1).pptxThe Open Access Community Framework (OACF) 2023 (1).pptx
The Open Access Community Framework (OACF) 2023 (1).pptx
 
Are we onboard yet University of Sussex.pptx
Are we onboard yet University of Sussex.pptxAre we onboard yet University of Sussex.pptx
Are we onboard yet University of Sussex.pptx
 
JiscOAWeek_LAIR_slides_October2023.pptx
JiscOAWeek_LAIR_slides_October2023.pptxJiscOAWeek_LAIR_slides_October2023.pptx
JiscOAWeek_LAIR_slides_October2023.pptx
 
UWP OA Week Presentation (1).pptx
UWP OA Week Presentation (1).pptxUWP OA Week Presentation (1).pptx
UWP OA Week Presentation (1).pptx
 
An introduction to Cyber Essentials
An introduction to Cyber EssentialsAn introduction to Cyber Essentials
An introduction to Cyber Essentials
 
MarkChilds.pptx
MarkChilds.pptxMarkChilds.pptx
MarkChilds.pptx
 
RStrachanOct23.pptx
RStrachanOct23.pptxRStrachanOct23.pptx
RStrachanOct23.pptx
 
ISDX2 Oct 2023 .pptx
ISDX2 Oct 2023 .pptxISDX2 Oct 2023 .pptx
ISDX2 Oct 2023 .pptx
 
FerrellWalker.pptx
FerrellWalker.pptxFerrellWalker.pptx
FerrellWalker.pptx
 

Recently uploaded

Scanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsScanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsRizwan Syed
 
Streamlining Python Development: A Guide to a Modern Project Setup
Streamlining Python Development: A Guide to a Modern Project SetupStreamlining Python Development: A Guide to a Modern Project Setup
Streamlining Python Development: A Guide to a Modern Project SetupFlorian Wilhelm
 
Unraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdfUnraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdfAlex Barbosa Coqueiro
 
WordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your BrandWordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your Brandgvaughan
 
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...shyamraj55
 
Story boards and shot lists for my a level piece
Story boards and shot lists for my a level pieceStory boards and shot lists for my a level piece
Story boards and shot lists for my a level piececharlottematthew16
 
Pigging Solutions in Pet Food Manufacturing
Pigging Solutions in Pet Food ManufacturingPigging Solutions in Pet Food Manufacturing
Pigging Solutions in Pet Food ManufacturingPigging Solutions
 
Vertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering TipsVertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering TipsMiki Katsuragi
 
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)Bun (KitWorks Team Study 노별마루 발표 2024.4.22)
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)Wonjun Hwang
 
Are Multi-Cloud and Serverless Good or Bad?
Are Multi-Cloud and Serverless Good or Bad?Are Multi-Cloud and Serverless Good or Bad?
Are Multi-Cloud and Serverless Good or Bad?Mattias Andersson
 
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 3652toLead Limited
 
AI as an Interface for Commercial Buildings
AI as an Interface for Commercial BuildingsAI as an Interface for Commercial Buildings
AI as an Interface for Commercial BuildingsMemoori
 
Beyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry InnovationBeyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry InnovationSafe Software
 
Understanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitectureUnderstanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitecturePixlogix Infotech
 
APIForce Zurich 5 April Automation LPDG
APIForce Zurich 5 April Automation LPDGAPIForce Zurich 5 April Automation LPDG
APIForce Zurich 5 April Automation LPDGMarianaLemus7
 
Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Commit University
 
DevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsDevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsSergiu Bodiu
 
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
"Federated learning: out of reach no matter how close",Oleksandr LapshynFwdays
 

Recently uploaded (20)

Scanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsScanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL Certs
 
Streamlining Python Development: A Guide to a Modern Project Setup
Streamlining Python Development: A Guide to a Modern Project SetupStreamlining Python Development: A Guide to a Modern Project Setup
Streamlining Python Development: A Guide to a Modern Project Setup
 
Unraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdfUnraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdf
 
WordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your BrandWordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your Brand
 
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
 
Story boards and shot lists for my a level piece
Story boards and shot lists for my a level pieceStory boards and shot lists for my a level piece
Story boards and shot lists for my a level piece
 
Pigging Solutions in Pet Food Manufacturing
Pigging Solutions in Pet Food ManufacturingPigging Solutions in Pet Food Manufacturing
Pigging Solutions in Pet Food Manufacturing
 
Vertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering TipsVertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering Tips
 
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)Bun (KitWorks Team Study 노별마루 발표 2024.4.22)
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)
 
Are Multi-Cloud and Serverless Good or Bad?
Are Multi-Cloud and Serverless Good or Bad?Are Multi-Cloud and Serverless Good or Bad?
Are Multi-Cloud and Serverless Good or Bad?
 
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptxE-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
 
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
 
AI as an Interface for Commercial Buildings
AI as an Interface for Commercial BuildingsAI as an Interface for Commercial Buildings
AI as an Interface for Commercial Buildings
 
Beyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry InnovationBeyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
 
Understanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitectureUnderstanding the Laravel MVC Architecture
Understanding the Laravel MVC Architecture
 
DMCC Future of Trade Web3 - Special Edition
DMCC Future of Trade Web3 - Special EditionDMCC Future of Trade Web3 - Special Edition
DMCC Future of Trade Web3 - Special Edition
 
APIForce Zurich 5 April Automation LPDG
APIForce Zurich 5 April Automation LPDGAPIForce Zurich 5 April Automation LPDG
APIForce Zurich 5 April Automation LPDG
 
Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!
 
DevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsDevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platforms
 
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
 

Certifying Secure Health Data Research

  • 1. Certifying and Securing aTrusted Environment for Health Informatics Research data Dr Jonathan Monk, Director of IT, University of Dundee 1/11/2016
  • 2. Health Informatics Centre dundee.ac.uk/hic Dr Jonathan Monk Director of IT University of Dundee Certifying and Securing a Trusted Environment for Health Informatics Research data
  • 3. Health Informatics Centre dundee.ac.uk/hic 1. Overview of Health Informatics 2. Research Data Management Platform 3. Safe Haven Architecture 4. ISO27001 Certification
  • 5. Health Informatics Centre dundee.ac.uk/hic Geographic - Tayside And Fife Population of Scotland Time Period 1972 - 2016 Electronic Medical Data Coverage
  • 6. Health Informatics Centre dundee.ac.uk/hic Parents Conception Birth Early Life Childhood Adulthood Late Life Death Research Datasets • GoDARTS Diabetes – 18K - Case/Controls • TASC FORCE – 5000 - MRA Volunteers • POPADAD – 1200 - Diabetes with no CVD • TRACE RA – 3200 - Rheumatoid Arthritis/UK Pre-consented Cohorts  SHARE – 100+K  Generation Scotland – 20K SMR02 Maternity & Neonate Walker 48,00 Births (1952-1966) Health Care Data  Primary Care : Community Prescribing  Secondary Care : Out Patient Visits, Hospital Admissions, Accident & Emergency, Cancer Register, Psychiatric Episodes.  Diagnostics : Radiology Events, Cardiology & Vascular Labs, Bowel Screening  Laboratory - Biochemistry, Haematology, Immunology, Microbiology, Virology  Diabetes Surveillance - BP,BMI, Smoking Alcohol, Amputations, Ulcers  Diabetic Retinal Images – DRS Retinopathy Image Library (Go DARTS Population) Disease Registers • TARDIS Respiratory Disease • SDCRN – Scottish Dementia Network • SCI Diabetes • Epilepsy Child Health Pre-School/School SIRS/CHSP Register Of Deaths DataForLinkageExistingResearch StudiesPhenotypic Data Available
  • 7. Health Informatics Centre dundee.ac.uk/hic Data Linkage Through Family Generations 2004 - Community Prescribing (Dispensed) 2016 1986 - Acute Hospital Admission Tayside 1975 - Births and Neonatal Record 1986 - Laboratory ( Biochemistry, Haematology, Immunology, Microbiology) 1994 - Radiology Records 1952 Walker Dataset 1952 – 66 48,000 Dundee Births Babies Mothers Fathers 1980 – Cancer Register 1990 – Diabetes Records Cohort participants episodes recorded in dataset
  • 9. Health Informatics Centre dundee.ac.uk/hic Controls  Ratio : 3:1  Match on Age, Sex, SIMD Feasibility Searches Inclusion:  Health Board : Tayside  Status : Alive  Conditions : Type 2 Diabetes  Age: >= 65  Prescribed : Insulin > 2yrs Exclude:  Prescribed: Statins Researcher Supplies Search Criteria Matches 570K 450K 120K 70K 9210
  • 11. Health Informatics Centre dundee.ac.uk/hic Demography GRO ECHO There was a 22% overall reduction in all cause mortality with β blocker use Prescribing TARDIS Biochemistry MicrobiologyHaematology Case Study # 1 - β blockers: Their Effect in Managing Chronic Obstructive Pulmonary Disease (COPD) Setting Tayside, Scotland (2001–2010) Population 5977 patients aged >50 years with a diagnosis of COPD. BMJ. 2011; 342: d2549. 10.1136/bmj.d2549 P.M Short, S.I.W Lipworth, D.H.J Elder, S. Schembri, B.J. Lipworth.
  • 12. Health Informatics Centre dundee.ac.uk/hic Hospital admissions GRO More than 400 lives are being lost each year because breast cancer patients fail to take the full course of the drug Tamoxifen due to "intolerable" side-effects Prescribing Br J Cancer. 2008 December 2; 99(11): 1763–1768. 10.1038/sj.bjc.6604758 McCowan, J Shearer, P T Donnan, J A Dewar, M Crilly, A M Thompson and T P Fahey Researcher Supplied Cohort Cancer patients from a Ninewells clinic Case Study #2: Tamoxifen adherence: Relationship to Mortality in Women with Breast Cancer
  • 13. Health Informatics Centre dundee.ac.uk/hic Research Data Management Platform (RDMP) ‘Optimizing and Augmenting the Research Data Supply Chain` Labs SMR01 Prescribing Raw Data Data Import Databases Custom Extractions & Export Formats RDMP Labs SMR01 Prescribing Raw Data Data Import Structured Database Extraction + Export DataLoad Engine Research Data Warehouse Validate Clean Catalogue QualityChecks Project X Data Marts Validate Clean Catalogue QualityChecks Project Y Data Marts Validate Clean Catalogue QualityChecks DataExtraction Engine
  • 14. Health Informatics Centre dundee.ac.uk/hic Data Set 1 Data Set 6 Data Set 2 Data Set 3 Data Set 4 Data Set 5 Data Set 1 Pseudo-CHI Data Set 2 Pseudo-CHI Data Set 6 Pseudo-CHI Data Set 3 Pseudo-CHI Data Set 4 Pseudo-CHI Data Set 5 Pseudo-CHI CHI and All Identifiable Data Data Set 1 Project -CHI Data Set 4 Project -CHI NHS Network University Network Data Repository Function of Safe Haven Analytic Platform of Safe Haven Virtual Environment – no data leaves
  • 15. Health Informatics Centre dundee.ac.uk/hic • Extraction takes minutes • Data released is standardised – the same regardless of Data Analyst that completes the work • A history is recorded of all changes to data over time • Data released now will be in the same format as in 5 years from now • Metadata has been added • Methods for transforming and validations have been added across all data sets • Tools to manage and explore the data are available to Data Management team and researchers • Audit and Logging all automated • Major work towards integration of image and genomic data
  • 17. Health Informatics Centre dundee.ac.uk/hic • Standard restrictive VDI solution • VMWare View / Horizon
  • 18. Health Informatics Centre dundee.ac.uk/hic • AppVolumes used for Applications • Bring Your Own License • Lots of Application Variations!
  • 19. Health Informatics Centre dundee.ac.uk/hic • There are many types of ISO Certification. • We have 27001:2013 – Certificate Number: 2016/2269 • ISO 27001:2013 is a specification for an information security management system (ISMS). An ISMS is a framework of policies and procedures that includes all legal, physical and technical controls involved in an organisation's information risk management processes. What is ISO27001?
  • 20. Health Informatics Centre dundee.ac.uk/hic Why ISO27001 certification? • Independent set of standards – so rather than constantly having to think what documents and processes we should have in place and reinventing the wheel, ISO gives us this! • Gives confidence to other organisations we work with e.g. NHS, main University. • Reduces other documentation requirements for governance, as we can just reference ISO documentation. • Improves the working practices of HIC. This has been particularly the case with our hardware infrastructure. • Key towards Scottish Government Safe Haven Accreditation.
  • 21. Health Informatics Centre dundee.ac.uk/hic Scottish Government Safe Haven Accreditation • 27001 standard controls PLUS some additional ones specific to Safe Havens. • Reviewed by Scottish Government eHealth. • Documentation Required: • Risk Assessment Doc • Mapping of Controls
  • 23. Health Informatics Centre dundee.ac.uk/hic Scope “The provision of data to researchers via safe haven environment, secure patient recruitment, data collection using software tools, data entry, the development and operation of web based applications and all assets underpinning the provision of those services from the locations of HIC premises at Ninewells Hospital and data centres within the University of Dundee Campus”
  • 24. Health Informatics Centre dundee.ac.uk/hic ISMS Controls Status with Statement of Applicability and Gaps
  • 25. Health Informatics Centre dundee.ac.uk/hic ISO Controls – Made up of HIC specific ones and University/NHS general controls University of Dundee Security Policies University of Dundee HR Policies and Procedures (and NHS where appropriate as we have honorary contracts) HIC HR Procedures/Training/Policies HIC Security Policies A7: Human Resource SecurityA5: Information Security Policies A6: Organisation of Information security University of Dundee Security Policies HIC Security Policies, SOPS, Procedures, Work Instructions and Service Descriptions
  • 26. Health Informatics Centre dundee.ac.uk/hic Document Types and Review Static & Formally Approved: HIC Exec & HIC Information Governance Committee • Policies • Standard Operating Procedures (SOPs) • Risk Management Doc • Information Security Management System (ISMS) Manual • Business Continuity Plan Just HIC Exec • Procedures Working Documents (technical): Relevant Technical Manager • Service Descriptions • Work Instructions • Asset and Responsibility Matrix • Disaster Recovery Plans • Infrastructure Diagrams
  • 27. Health Informatics Centre dundee.ac.uk/hic Structure of Docs in Box Become aware of an improvement of our current procedure Take a copy of Procedure from “Live” folder and move to “Under Development”. Draft change using tracked changes. Ask Technical Manager to review. Technical Manager moves the doc they have approved to “Awaiting Approval Folder” and asks for it to be included in HIC Exec Meeting Agenda for review. If approved at HIC Exec either formally approved or sent to HIC Information Governance Committee for additional formal approval (if document type requires) Approved doc is moved to “Live” folder by HIC Admin Procedure Changes
  • 28. Health Informatics Centre dundee.ac.uk/hic Infrastructure comprised UoD, HIC & NHS University of Dundee Network NHS Network HIC Managed Hardware HIC Managed Hypervisor Cluster HIC Managed Operating Systems HIC Managed Applications UoD Hardware UoD Hypervisor UoD OS UoD Applications HIC and UoD use identical platform technology and share locations Hardware & responsibility for management varies depending on specificity University of Dundee Data Centres NHS Locations
  • 29. Health Informatics Centre dundee.ac.uk/hic Timelines • Help from University’s Information Security Officer (Graham McKay) to get us up to the required standard. • Passed our Stage 1 audit of our documentation in June 2015. • Passed our Stage 2 audit of our systems (do we do what we say we do in our documentation) in Jan 2016. • Passed second Stage 2 audit July 2016 • Now have full audits every 6 months for the next 3 years!
  • 30. Health Informatics Centre dundee.ac.uk/hic Phil Appleby Jim Galloway Chris Hall Duncan HeatherEmily Jefferson Claire JonesGordon McAllister Keith MilburnLeandro Tramma Donald Scobbie Thomas Nind Guney Hanedan Graham McKay Many thanks to the people that did all the work!

Editor's Notes

  1. Pre-Grant Application Service Feasibility Aggregates Inclusion & Exclusion breakdowns Cohort Identification Case Control Matching
  2. Changed the black font in the blue bubbles to white
  3. Changed the black font in the blue bubbles to white