MITA Releases National Standard for Medical Device Security

October 11, 2019

The Medical Imaging & Technology Alliance (MITA) announced the publication of a voluntary standard that supports security risk management within healthcare organizations by providing standardized information on security control features integrated within medical devices.

The standard, NEMA/MITA HN 1-2019, Manufacturer Disclosure Statement for Medical Device Security (MDS2), includes a form intended to provide healthcare delivery organizations with information and security control features within medical devices. It also clarifies the roles of manufacturers and healthcare delivery organizations in ensuring the security of medical devices.

“MITA recognizes that cybersecurity is a shared responsibility among all involved market participants, and it requires health delivery organizations especially to work collaboratively with manufacturers to ensure the use of best practices,” said Dennis Durmis, Senior Vice President Bayer Radiology, Americas Region, and Chair of MITA Board of Directors. “With this Standard, we aim to streamline communication and increase transparency of information between manufacturers and healthcare delivery organizations.”

“This Standard is an important step in the collaborative efforts between health delivery organizations and manufacturers to mitigate cybersecurity risk,” added Tim Walsh, Principal Information Security Analyst – CIS Operations, Mayo Clinic, and member of the MDS2 Canvass Group. “Transparent information and speed of getting that information from manufacturers to health delivery organizations are crucial, and this Standard helps foster both.”

The shared responsibility recognized by this Standard is aligned with the position of the U.S. Food and Drug Administration (FDA), which released a preparedness and response “ playbook ” last October to help healthcare delivery organizations address threats to medical device cybersecurity. Recognizing that manufacturers, hospitals, health care providers, cybersecurity researchers and government entities all have roles to play in addressing threats to medical device cybersecurity, the playbook serves as a resource to healthcare delivery organizations as they develop their individual emergency response plans.

You must login or register in order to post a comment.

ON DEMAND: DevSecOps creates an environment of shared responsibility for security, where AppSec and development teams become more collaborative. With the right training and tools, developers can become more hands-on with security and, with that upskilling, stand out among their peers... however, they need the security specialists on-side, factoring them into securing code from the start and championing this mindset across the company.

ON DEMAND: The insider threat—consisting of scores of different types of crimes and incidents—is a scourge even during the best of times. But the chaos, instability and desperation that characterize crises also catalyze both intentional and unwitting insider attacks. Learn how your workers, contractors, volunteers and partners are exploiting the dislocation caused by today's climate of Coronavirus, unemployment, disinformation and social unrest.

Security Magazine

2020 October

This month in Security magazine, we explore how Corning's global security group ensured business continuity and employee safety during the global COVID-19 pandemic. Also, we highlight the global security team at Uber and their recent security programs and initiatives. Industry experts discuss travel safety programs, career hackers, working for terrible bosses, group attribution error and more.

View More Create Account

MITA Releases National Standard for Medical Device Security

Related Articles

Related Products

Related Events

Report Abusive Comment