Identify, understand and remediate vulnerabilities

The Data Security Assessment is the first stage of NHS Digital’s Cyber Security Support Model (CSSM) and is designed to identify vulnerabilities and understand and remediate areas of high risk.

The Data Security Assessment includes a Cyber Essentials Plus assessment along with an IT Healthcheck tailored to the needs of an NHS organisation.

The Data Security Assessment provides evidence for 15 requirements of the Data Security and Protection Toolkit.

The DataSecurity Assessments service has been superceded by the Cyber Assurance Service, although healthcare organisations can still commission Data Security Assessments directly.

What we do

Dionach will work with you to understand your environment.

Using years of healthcare experience, we help you identify vulnerabilities and put in place robust remediation plans.

What's included

Each engagement covers the following main areas:

1. Access Control Management

Ensuring all staff can access systems and access is controlled to only the data needed for their job role.

2. Malware Protection

Verifying the effectiveness of protection mechanisms and the detection of malicious files entering the network via web and email traffic.

3. Log Management

Checking that information is being stored securely to support the investigation of a cyber incident.

4. Patch Management

Looking at the capability to deploy updates to the hardware and software used across the organisation.

5. Threat and Vulnerability Management

Supporting the ability to identify cyber vulnerabilities and understanding the threat exposure.


We deliver the whole spectrum of cyber security services, from long-term, enterprise wide strategy and implementation projects to single penetration tests.

Our team works with you to identify and assess your organisation’s vulnerabilities, define enterprise-wide goals, and advise how best to achieve them.

Our recommendations are clear, concise, pragmatic and tailored to your organisation.

Independent, unbiased, personalised – this is how we define our services. We guide you to spend wisely and invest in change efficiently.

Find out how we can help with your cyber challenge