Is the staff/office Wi-Fi password protected and separate from the Guest Wi-Fi?
Are all software updates (Windows/Android/iOS) installed and up to date on care tablets?
Is active Antivirus software installed and running on all office computers?
Are unused network ports in public areas (lounges/reception) disabled?
Have all leavers had their system access revoked within 24 hours of departure?
Are staff using 'Strong' passwords (mix of letters, numbers, symbols)?
Is Multi-Factor Authentication (MFA) enabled for email or sensitive care systems?
Can a random staff member describe what to do if they receive a suspicious link via email?
Are critical files backed up (Cloud or Physical) and tested regularly?
Is there a 'Business Continuity Plan' for what to do if the internet goes down?
Are physical server or router cabinets kept locked to prevent tampering?
Is there a list of emergency IT contacts available to the person in charge?