HSCC issues guide to promote cyber secure medical devices, health IT

Jan 28, 2019 - 03:01 PM

The Healthcare and Public Health Sector Coordinating Council (HSCC) today released a consensus-based guide to developing, deploying and supporting cyber-secure medical devices and health information technology across the product lifecycle and improving information sharing between manufacturers and health care organizations. A public-private partnership of health care companies and providers developing collaborative solutions to mitigate threats to critical health care infrastructure, HSCC developed the Medical Device and Health IT Joint Security Plan in response to 2017 recommendations by the Health Care Industry Cybersecurity Task Force. “The goal of this effort was to align cybersecurity priorities and processes between medical device manufactures and health care providers to lower the cybersecurity risk in medical devices,” said Kevin McDonald, co-chair of the initiative and director of clinical information security at Mayo Clinic. “By creating this alignment we can strengthen the security of medical technology against cyber threats, improve cyber risk management within health care organizations, and better protect patient safety.” Feedback on the plan, which will be updated as needed to adapt to the changing threat environment, may be emailed to JSPFeedback@HealthSectorCouncil.org. 

Related News Articles

Headline
AHA Podcast: Start with Defense — Building a Cyber-ready Team 
Health care is under constant cyberattack threat, but how prepared is the industry to fight back? The lack of resources is especially acute in rural areas. In…
Headline
AHA names new deputy national advisor for cybersecurity risk
AHA Aug. 23 named James “Scott” Gee deputy national advisor for cybersecurity and risk. Gee will work with John Riggi, AHA’s national advisor for cybersecurity…
Headline
HHS alerts health sector to cyberthreat from Everest ransomware group
The Department of Health and Human Services Health Sector Cybersecurity Coordination Center (HC3) this week released an advisory about Everest, a ransomware-as…
Headline
AHA blog: How to prepare for third-party cyber risk 
In his latest AHA Cyber Intel blog, John Riggi, AHA national advisor for cybersecurity and risk, explains why cybercriminals are shifting from directly…
Headline
CISA guidance informs users on software products which should be secure by design and demand 
The Cybersecurity and Infrastructure Security Agency and FBI Aug. 8 released guidance on secure by design software products which includes resources to assess…
Perspective
Keeping Up Our Guard and Fighting Back Against Cybercrime
It seems like barely a week goes by without a new cyberattack that affects health care providers. Often, it’s a ransomware attack conducted by foreign criminal…