Medical Device Security
Media Education Materials
Health-ISAC (Health Information Sharing and Analysis Center) released a set of media education materials covering broad medical device security, including the coordinated vulnerability disclosure process for medical devices. The materials include:
The materials were developed by a working group within the Health-ISAC Medical Device Security Information Sharing Council (MDSISC). The MDSISC consists of 331 volunteers from 49 medical device manufacturers who collaborated with their hospital user group of 64 health delivery organizations working together to develop solutions, best practices, and exchange information that will result in a more efficient and secure use of medical devices and related practices. The materials are intended to be high level, a quick read, and the industry can point journalists and other stakeholders to these materials with the goal of driving accurate and balanced reporting of medical device vulnerability disclosures.
Clear communication of medical device vulnerabilities is critical for the industry. As key stakeholders, we hope this newly-developed content will help media and other key partners better understand the landscape and navigate the complexities of device security.
Matt Russo – Senior Director of Product Security, Medtronic
Medical device manufacturers are making a conscious effort to disclose vulnerabilities as they arise. Sometimes, news stories that result from these disclosures distort the impact of the actual vulnerabilities and cause panic or confusion. We hope these newly-developed resources will help inform and educate the journalists who write about these disclosures to truly understand the nature of the vulnerabilities and report on them accordingly.
Denise Anderson – President & CEO, Health-ISAC
Product Security Websites
This page provides access to medical device manufacturers’ product security websites. The URLs for each manufacturer listed will link to their product security site where you will find relevant security information.