Medical device cybersecurity has been top of mind at the Food and Drug Administration (FDA) in recent years. In April, the FDA proposed an update to its current guidance on cybersecurity for medical devices and recently released its Cybersecurity Modernization Action Plan. Following these moves, the FDA and MITRE Corp. released an updated version of their "Medical Device Cybersecurity Regional Incident Preparedness and Response Playbook." The playbook provides healthcare organizations with actionable strategies and resources for responding to cyber incidents while ensuring medical device security.
First published in 2018, the playbook outlines how hospitals and other healthcare delivery organizations can develop a cybersecurity preparedness and response framework. It intends to supplement existing emergency management and/or incident response capabilities at healthcare organizations with regional preparedness and response recommendations for medical device cybersecurity incidents. Its focus is on response to an incident stemming from a compromised medical device and not day-to-day risk management.
While the entire document is worth reviewing, we identified a few key recommendations from the document that hospitals and others may wish to consider further in the context of their own cybersecurity incident response planning processes.
Day Pitney's healthcare and cybersecurity attorneys have dozens of years of combined experience advising hospitals and other healthcare providers on incident response planning, mitigation, response, and recovery. Please let us know if you would like to discuss this new guidance and our thoughts on how hospitals and others can best use it to protect their organization and patients.
Would you like to receive our Day Pitney C.H.A.T. Newsletter? Sign up here.
Day Pitney Cybersecurity, Healthcare and Technology (C.H.A.T.) Newsletter – December 2022
Day Pitney Cybersecurity, Healthcare and Technology (C.H.A.T.) Newsletter – December 2022
Day Pitney Cybersecurity, Healthcare and Technology (C.H.A.T.) Newsletter – December 2022
Copyright © 2024 Day Pitney LLP, all rights reserved.