AXREM Publishes New Cyber Security Strategy and Cyber Attack Procedure to Strengthen National Resilience Across Healthcare Technology

AXREM
14 May, 2026
Cyber Security Launch 6a0599f4021c4

 

AXREM has today launched its Cyber Security Information Sharing & Incident Response Strategyalongside a new Cyber Attack Procedure, reinforcing the association’s commitment to protecting the UK’s diagnostic imaging, radiotherapy and healthcare IT ecosystem from an escalating cyber threat landscape.

These two coordinated documents set out a clear framework for intelligence sharing, incident escalation, and cross‑sector collaboration, ensuring that suppliers, NHS partners and national bodies can act rapidly and consistently during cyber incidents.

A Sector‑Wide Approach to Cyber Resilience

The updated AXREM Cyber Security Strategy outlines how AXREM and its members will consolidate and share cyber‑related intelligence, strengthen links with NHS England’s Cyber Security Operations Centre (CSOC), the National Cyber Security Centre (NCSC), the Department of Health & Social Care (DHSC) and the Joint Cyber Unit (JCU), and implement structured escalation aligned with national NHS guidance.

The strategy emphasises rapid and accurate information sharing, proactive security practices, structured escalation levels, and national alignment through adoption of the NHS England Health & Care System Cyber Security Incident Guidance (Grab Bag) v1.2.

Clear Incident Pathways Through the AXREM Cyber Attack Procedure

Published alongside the strategy, the AXREM Cyber Attack Procedure establishes a single, safe forum for reporting live cyber incidents, sharing intelligence, and ensuring members receive coordinated guidance during unfolding events.

Key features include:

- A centralised reporting route via cyber@axrem.org.uk or the AXREM online pro forma.

- AXREM acting as a single point of contact with NHS CSOC, DHSC, NCSC and other national bodies.

- A defined Expert Panel of senior cyber specialists from member organisations to provide coordinated advice.

- Escalation timelines aligned directly to NHS Level 1–4 incident categories, ensuring timely mobilisation of member and national resources.

Where members face significant disruption, AXREM will convene urgent meetings—with Level 4 incidents triggering a sector‑wide call within four hours.

A Strengthened National Partnership

The strategy and procedure further embed AXREM members into national response mechanisms, ensuring closer collaboration with government and NHS partners while supporting consistency across the supplier landscape. Together, the documents encourage best practice, enhance transparency, and support the continuity of patient care during increasingly sophisticated cyber-attacks.

AXREM CEO Sally Edgington said: “Cyber security is now inseparable from patient safety, service continuity and the resilience of the UK’s healthcare technology infrastructure. As the threat landscape continues to evolve, it is essential that our sector moves with clarity, coordination and a shared sense of responsibility.

This new Cyber Security Strategy and Cyber Attack Procedure represent a significant step forward in how AXREM and its members work with NHS England, government partners and national cyber bodies. By strengthening intelligence sharing, formalising escalation pathways and creating a single, trusted route for incident coordination, we are ensuring that suppliers can respond rapidly and consistently when it matters most.

Our aim is simple: to support a safer, more resilient healthcare system for patients and clinicians across the country. These documents reaffirm AXREM’s commitment to national collaboration and demonstrate the vital role our members play in protecting the technologies that underpin modern healthcare.”

AXREM Vice Chair and AXREM Cyber Security Working Group Chair Bob Childe said: “I am very proud of the work we have done so far in this area. This will remain a constant threat to us all and we will need to continue our work as we move forward. This is a very challenging area, we see security requirements increasing alongside costs to provide the added protection required. It’s very important that the NHS is funded adequately to cover these requirements. We will continue our work and discussions with NHS England, government partners and national cyber bodies to ensure our continued support and adoption of required future policies.

Supporting the NHS and Wider Health System

AXREM strongly endorses NHS England’s Cyber Security Incident Grab Bag v1.2 and encourages all members to follow the technical, operational and communication guidance it contains.

By aligning closely with national frameworks, AXREM’s cyber materials support seamless coordination with NHS regions, ICBs, national teams and other partners during major incidents.

Access all documents HERE

Recommended Reading

27 May 2026 | From Two Trusts to One Identity: The ManageEngine AD360 Playbook for NHS Merger IAM

11 May 2026 | AXREM to Host Flagship External Stakeholder Conference at the Royal Society of Medicine

15 April 2026 | AXREM Sustainability Lead Chris Taylor Runs Richmond Half to Back Dementia UK

Our accreditations

abpco
Manchester Bee
Living Wage Employer
Good Employment
Good Employment Member
Armed Forces Covenant
Tech UK
IHSCM
FSB
Ban The Box
Stockport County
cpdgroup
Q-Park

Contact details

Registered Address: Riverside House, Kings Reach Business Park, Yew Street, Stockport, SK4 2HD
Call Now: 0161 820 0631
Company Reg No. 11103622

Quick links

Socials

Google Reviews
© Copyright 2026 All Rights Reserved - Convenzis