According to IronKey, a secure USB drive specialist, the hospital encourages staff to avoid carrying data on portable devices unless absolutely necessary. And, to avoid any ambiguity when they do, its policy states that it must be using a secure USB stick.
IronKey said that its secure USB stick have been validated for FIPS 140-2, Level 3 certification and wasselected by the Trust because of their centrally-based policy management; the ability to remotely disable a device; and that the secure USB stick self destruct following a set number of failed login attempts.
The hospital uses RSA SecurID ready software to consolidate its encrypted mobile storage and strong two-factor authentication into a single secure USB device, allowing easier secure connections to its infrastructure from remote locations.
This, IronKey said, is especially important as The Royal Marsden is no longer confined only to its two Chelsea and Sutton sites, since launching satellite locations around the South-east of England.
According to John Reed, the Trust's IT director, he is aware of the reputational damage that arises from data loss. If the unthinkable happened, and the hospital's data were to be lost, he said he would be devastated.
"The damage to reputation is one element, but far worse would be losing the trust of the individuals involved", he said.
"I have the responsibility... and I'm not just going to settle for the bare minimum to meet government standards. I'm going to invest in the strongest solutions that I possibly can", he added.