Digital Telecare for Scottish Local Government has launched a Digital Telecare Security Assessment Scheme to support telecare service providers across Scotland and suppliers with the transition to digital telecare.
When implementing digital telecare, telecare service providers are likely to use a range of suppliers to provide the equipment and services that form the overall solution. For this reason, telecare service providers need to evaluate the cyber security risk associated with each supplier before integrating their equipment/service into the solution.
Digital Telecare has designed an assessment procedure to reduce the burden on suppliers to provide this evidence to multiple customer organisations and ensure a consistent and best practice approach is taken to cyber security. Please click the link below for full details of the assessment process:
Suppliers listed below have been assessed against their business processes related to cyber security. In addition, any devices or services listed below have been individually assessed and passed to be entered on this list.
Some devices have been entered onto the list with procurement caveats, these caveats will be noted in the “notes” column of the tables below. In some cases, evidence of Distributed Denial of Service (DDoS) protection was supplied. Where this was reviewed and accepted a “Yes” has been entered into the DDoS column. A blank within the column does not necessarily mean that no protection is available, and you should speak to your chosen supplier(s) if this is a feature you require.
This table only contains devices and services that relate to call handling and initiation. Devices such as fall monitors, smoke detectors, heartbeat sensors etc and not included in this list. If you wish to purchase one of these devices and it is not listed below you will have to conduct your own security assessment during procurement. We hope to expand this assessment service to cover these devices in future.
Please note that the omission from this table of a supplier, device or service means that either the entity has not been presented for assessment or that the entity failed assessment. Should a telecare service provider wish to procure a device or service not listed then they will need to carry out a full assessment themselves.
The Digital Telecare Assessed Suppliers List will be updated in due course.
Suppliers can be signposted to this take part in the assessment process by directing them to enquire by sending an email entitled “Assessed Suppliers List” to email@example.com with the following information:
1. A point of contact for your company;
2. A list of the equipment/services you intend to put through the Assessment Scheme;
3. Potential timescales for completing the Assessment Scheme.
If you have any queries regarding the Digital Telecare Security Assessment Scheme, please get in touch