Case Study: Clatterbridge Cancer Center achieves faster detection and secure patient records with Rapid7 InsightIDR

Clatterbridge Cancer Center Trusts Rapid7’s SIEM to Keep Patient Records Secure

Clatterbridge Cancer Center is one of the UK’s leading cancer centres, serving more than 2.4 million people through a multi-site model (three main sites, four systemic therapy sites, 15 outpatient centres and home/workplace chemotherapy). A three-person security team is responsible for protecting confidential medical records that are shared with other hospitals and thousands of external users; as Richard Pilkington, IT Security Manager, explains, “The most pressing challenges are phishing and user errors. We can be as secure as can be, but at the end of the day it all comes down to our staff.”

To address that risk they deployed Rapid7 InsightIDR to centralize monitoring across ~2,500 endpoints (including medical devices), 300 servers and 1,650 users on their SDA Cisco network. Kilbane: “It took less than 48 hours for us to go from out of the box to up and running with quite a few of our critical systems logged in. The documentation available with InsightIDR was brilliant.” InsightIDR’s alerts—notably for Active Directory—uncovered misuse (stopping improper account reactivations), delivered actionable 30‑day reports for stakeholders, helped achieve the highest DSPT assurance, and strengthened the Trust’s compliance and board-level assurance around patient-data security.

Clatterbridge Cancer Center

Andy Kilbane

Digital Systems Security Specialist