The Air Ambulance Service is a healthcare entity that is not a business, operating as an independent public healthcare institution under the Ministry of Health. It provides medical services within the Polish healthcare system, focusing on emergency medical assistance, including performing medical emergency procedures and providing air medical transport. The Independent Public Healthcare Institution of the Air Ambulance Service was established in 2000. By the regulation of the Minister of Health on November 9, 2016, the name of the entity was changed to “Air Ambulance Service.”
What did the client expect?
The goal of the project was to develop and implement the documentation required by the Act of July 5, 2018, on the national cybersecurity system, specifically in relation to the tasks of the operator of a key service. The Air Ambulance Service chose PBSG. We offered comprehensive support. Additionally, our experience worked in our favor – we already have audits of the National Cybersecurity System (KSC) in our portfolio, all concluded with positive references from clients. Furthermore, we ensured that the project would be carried out thoroughly and without disrupting the daily operations of the National Medical Rescue Monitoring Center (KCMRM).
What did we do?
PRELIMINARY EXAMINATION
First, we assessed the resources of KCMRM – specifically checking whether they meet the requirements, particularly in the organizational-technical, legal areas, and compliance with ISO standards.
RISK ANALYSIS
We thoroughly analyzed the solutions used within the organization. We focused on assessing the vulnerabilities and threats that could impact the security of the client’s processes and resources.
WE PREPARED AND IMPLEMENTED THE DOCUMENTATION
Based on the analysis results, we prepared the necessary documentation and recommendations, highlighting areas for improvement in the field of cybersecurity.
WE TRAINED THE EMPLOYEES
Finally, we organized training for designated individuals. We focused on practical issues to realistically enhance the knowledge of cybersecurity.
What were the results?
Thanks to our consulting and comprehensive support, the National Medical Rescue Monitoring Center (KCMRM) received documentation tailored to the guidelines of the KSC Act. As a result, the organization significantly improved its security level and raised awareness regarding information security and cybersecurity, which is a key service operator’s responsibility.
We carried out the project according to the highest standards, respecting the client’s operational structure and specific needs – the positive references and the extension of cooperation to develop an information security policy for the Air Ambulance Service are proof of this.
What did the client gain?
Tailored documentation and procedures compliant with the guidelines of the KSC Act.
An information security policy tailored to the organization’s specifics.
Increased awareness and knowledge of cybersecurity among employees.
