{"id":16702,"date":"2023-08-31T09:45:25","date_gmt":"2023-08-31T13:45:25","guid":{"rendered":"https:\/\/themedtechconference.com\/?p=16702"},"modified":"2023-08-31T09:45:26","modified_gmt":"2023-08-31T13:45:26","slug":"keep-patients-data-secure","status":"publish","type":"post","link":"https:\/\/themedtechconference.com\/keep-patients-data-secure\/","title":{"rendered":"To Keep Patients Safe and their Data Secure, We Need to Work Together"},"content":{"rendered":"\n<p>by Drew Bomett, VP &amp; Chief Information Security Officer, Boston Scientific<\/p>\n\n\n\n<figure class=\"wp-block-image size-large is-resized\"><img fetchpriority=\"high\" decoding=\"async\" src=\"https:\/\/themedtechconference.com\/wp-content\/uploads\/Andrew-Bomett-854x1024.jpg\" alt=\"Andrew Bomett Headshot\" class=\"wp-image-16703\" style=\"width:272px;height:326px\" width=\"272\" height=\"326\"\/><\/figure>\n\n\n\n<p>Increasingly, hospital systems today find themselves targeted by cybercriminals. A Journal of the American Medical Association report found that between 2016 and 2021, the number of ransomware attacks on health care delivery organizations <a href=\"https:\/\/jamanetwork.com\/journals\/jama-health-forum\/fullarticle\/2799961\" target=\"_blank\" rel=\"noreferrer noopener\">more than doubled<\/a>, with attacks growing larger and more severe, ultimately exposing the personal health information of nearly 42 million patients. Sensitive data isn\u2019t the only thing at risk in a cyberattack; the risk extends to patient care and safety.<\/p>\n\n\n\n<p>Network connectivity for interoperability has become vitally important for medical devices. This connectivity benefits patients, but it also comes with risks to manage. Hospitals and manufacturers have a shared responsibility to ensure that those connected systems remain safe, secure, and effective &#8212; a responsibility which, as per a new FDA regulation, is now officially a requirement.<\/p>\n\n\n\n<p>The medtech industry has an important role to help reduce cyberattacks on hospital systems.But to do so effectively, we need to continue to work together.<\/p>\n\n\n\n<p><strong>Why create a uniform cybersecurity standard?<\/strong><\/p>\n\n\n\n<p>Medical devices are increasingly designed to interoperate with other systems and technology, much of which is provided by different manufacturers \u2013 each with varying cybersecurity specifications and robustness. That variation has become an acute point of concern amid the fast-growing sophistication of the threat landscape. Accordingly, the process of vetting the security of each device has become exponentially cumbersome for hospitals.<\/p>\n\n\n\n<p>For example, between 2004 and 2019, the standard <a href=\"https:\/\/www.nema.org\/Standards\/view\/Manufacturer-Disclosure-Statement-for-Medical-Device-Security\" target=\"_blank\" rel=\"noreferrer noopener\">risk analysis questionnaire<\/a> for device manufacturers ballooned from 17 questions to 165 questions, an indication of the push for more transparency in the security design of medical devices. Additionally, some hospitals have created personalized cybersecurity questionnaires that can run to hundreds of questions. This results in much paperwork, overhead and uncertainty for hospital teams, which could be mitigated if manufacturers were to adopt a unified set of standards.&nbsp; &nbsp;<\/p>\n\n\n\n<p>This past December, after years of FDA guidance on medical device cybersecurity, new, mandatory <a href=\"https:\/\/www.congress.gov\/bill\/117th-congress\/house-bill\/2617\" target=\"_blank\" rel=\"noreferrer noopener\">requirements for all medical devices<\/a> were signed into law. These requirements will go into effect October 1, 2023. Ordinarily, this would constitute a very short turnaround for compliance. Fortunately, however, many of us within medtech had already begun working together on a set of standards that would fulfill the new mandate.<\/p>\n\n\n\n<p><strong>Collaborating to ensure safety from cyber threats and move our industry forward<\/strong><\/p>\n\n\n\n<p>Convincing competitors to work together isn\u2019t always easy, but the medical device industry has a longstanding tradition of bringing diverse stakeholders together around united goals. Two such unifying organizations are the <a href=\"https:\/\/www.aami.org\/\" target=\"_blank\" rel=\"noreferrer noopener\">Association for Advancement of Medical Instrumentation (AAMI)<\/a> and the <a href=\"https:\/\/h-isac.org\/\" target=\"_blank\" rel=\"noreferrer noopener\">Health Information Sharing and Analysis C<\/a>enter (H-ISAC). I\u2019m proud to say that not only is Boston Scientific an active member of these organizations, but our co-founder John Abele <a href=\"https:\/\/array.aami.org\/doi\/full\/10.2345\/0899-8205-51.3.188\" target=\"_blank\" rel=\"noreferrer noopener\">helped create AAMI back in 1965<\/a>.<\/p>\n\n\n\n<p>Thus, as regulators were increasing their scrutiny on cybersecurity, Boston Scientific was already involved in devising solutions in our role as co-chair of the AAMI device security working group. That group\u2019s successful collaborative efforts resulted in the June publication of a new <a href=\"https:\/\/array.aami.org\/doi\/10.2345\/0899-8205-57.2.40\" target=\"_blank\" rel=\"noreferrer noopener\">landmark medical device cybersecurity risk management standard<\/a>. It represents the very first guidance document for managing security risk across a product\u2019s life cycle. Using this document as a roadmap for security risk management, medical device manufacturers can work to create a more unified cybersecurity landscape, which should help protect hospital security networks from attack and keep patients safe. While we will continue to remain vigilant in the face of evolving cyberthreats, this milestone document stands as an important reminder of how much the medtech industry can accomplish when we collaborate on behalf of what we can all agree is our highest priority: the patient.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>by Drew Bomett, VP &amp; Chief Information Security Officer, Boston Scientific Increasingly, hospital systems today find themselves targeted by cybercriminals. A Journal of the American Medical Association report found that between 2016 and 2021, the number of ransomware attacks on &#8230; <\/p>\n<p class=\"read-more-container\"><a title=\"To Keep Patients Safe and their Data Secure, We Need to Work Together\" class=\"read-more button\" href=\"https:\/\/themedtechconference.com\/keep-patients-data-secure\/#more-16702\">Keep Reading<span class=\"screen-reader-text\">To Keep Patients Safe and their Data Secure, We Need to Work Together<\/span><\/a><\/p>\n","protected":false},"author":23,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"content-type":"","footnotes":""},"categories":[1],"tags":[],"class_list":["post-16702","post","type-post","status-publish","format-standard","hentry","category-uncategorized"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v26.4 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>To Keep Patients Safe and their Data Secure, We Need to Work Together - The MedTech Conference<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/themedtechconference.com\/keep-patients-data-secure\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"To Keep Patients Safe and their Data Secure, We Need to Work Together - The MedTech Conference\" \/>\n<meta property=\"og:description\" content=\"by Drew Bomett, VP &amp; Chief Information Security Officer, Boston Scientific Increasingly, hospital systems today find themselves targeted by cybercriminals. A Journal of the American Medical Association report found that between 2016 and 2021, the number of ransomware attacks on ... Keep ReadingTo Keep Patients Safe and their Data Secure, We Need to Work Together\" \/>\n<meta property=\"og:url\" content=\"https:\/\/themedtechconference.com\/keep-patients-data-secure\/\" \/>\n<meta property=\"og:site_name\" content=\"The MedTech Conference\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/MedTechCon\/\" \/>\n<meta property=\"article:published_time\" content=\"2023-08-31T13:45:25+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2023-08-31T13:45:26+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/themedtechconference.com\/wp-content\/uploads\/Andrew-Bomett-854x1024.jpg\" \/>\n<meta name=\"author\" content=\"Wintana Zerai\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@medtechcon\" \/>\n<meta name=\"twitter:site\" content=\"@medtechcon\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Wintana Zerai\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/themedtechconference.com\/keep-patients-data-secure\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/themedtechconference.com\/keep-patients-data-secure\/\"},\"author\":{\"name\":\"Wintana Zerai\",\"@id\":\"https:\/\/themedtechconference.com\/#\/schema\/person\/7879f17c5a24fa5824a51fd78325f7dd\"},\"headline\":\"To Keep Patients Safe and their Data Secure, We Need to Work Together\",\"datePublished\":\"2023-08-31T13:45:25+00:00\",\"dateModified\":\"2023-08-31T13:45:26+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/themedtechconference.com\/keep-patients-data-secure\/\"},\"wordCount\":615,\"publisher\":{\"@id\":\"https:\/\/themedtechconference.com\/#organization\"},\"image\":{\"@id\":\"https:\/\/themedtechconference.com\/keep-patients-data-secure\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/themedtechconference.com\/wp-content\/uploads\/Andrew-Bomett-854x1024.jpg\",\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/themedtechconference.com\/keep-patients-data-secure\/\",\"url\":\"https:\/\/themedtechconference.com\/keep-patients-data-secure\/\",\"name\":\"To Keep Patients Safe and their Data Secure, We Need to Work Together - The MedTech Conference\",\"isPartOf\":{\"@id\":\"https:\/\/themedtechconference.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/themedtechconference.com\/keep-patients-data-secure\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/themedtechconference.com\/keep-patients-data-secure\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/themedtechconference.com\/wp-content\/uploads\/Andrew-Bomett-854x1024.jpg\",\"datePublished\":\"2023-08-31T13:45:25+00:00\",\"dateModified\":\"2023-08-31T13:45:26+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/themedtechconference.com\/keep-patients-data-secure\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/themedtechconference.com\/keep-patients-data-secure\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/themedtechconference.com\/keep-patients-data-secure\/#primaryimage\",\"url\":\"https:\/\/themedtechconference.com\/wp-content\/uploads\/Andrew-Bomett-854x1024.jpg\",\"contentUrl\":\"https:\/\/themedtechconference.com\/wp-content\/uploads\/Andrew-Bomett-854x1024.jpg\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/themedtechconference.com\/keep-patients-data-secure\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/themedtechconference.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"To Keep Patients Safe and their Data Secure, We Need to Work Together\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/themedtechconference.com\/#website\",\"url\":\"https:\/\/themedtechconference.com\/\",\"name\":\"The MedTech Conference\",\"description\":\"Where Medtech Innovates\",\"publisher\":{\"@id\":\"https:\/\/themedtechconference.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/themedtechconference.com\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/themedtechconference.com\/#organization\",\"name\":\"AdvaMed\",\"alternateName\":\"The MedTech Conference\",\"url\":\"https:\/\/themedtechconference.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/themedtechconference.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/themedtechconference.com\/wp-content\/uploads\/MTC23-brand.png\",\"contentUrl\":\"https:\/\/themedtechconference.com\/wp-content\/uploads\/MTC23-brand.png\",\"width\":831,\"height\":172,\"caption\":\"AdvaMed\"},\"image\":{\"@id\":\"https:\/\/themedtechconference.com\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/www.facebook.com\/MedTechCon\/\",\"https:\/\/x.com\/medtechcon\",\"https:\/\/www.instagram.com\/themedtechconference\/\",\"https:\/\/www.linkedin.com\/company\/the-medtech-conference\/\",\"https:\/\/www.youtube.com\/user\/AdvaMedConference\/\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/themedtechconference.com\/#\/schema\/person\/7879f17c5a24fa5824a51fd78325f7dd\",\"name\":\"Wintana Zerai\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/themedtechconference.com\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/ac474fb8b05291886e112ecd78bad9ff9cc9ed6e77819016270fb26d61f4134b?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/ac474fb8b05291886e112ecd78bad9ff9cc9ed6e77819016270fb26d61f4134b?s=96&d=mm&r=g\",\"caption\":\"Wintana Zerai\"},\"url\":\"https:\/\/themedtechconference.com\/author\/wintana\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"To Keep Patients Safe and their Data Secure, We Need to Work Together - The MedTech Conference","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/themedtechconference.com\/keep-patients-data-secure\/","og_locale":"en_US","og_type":"article","og_title":"To Keep Patients Safe and their Data Secure, We Need to Work Together - The MedTech Conference","og_description":"by Drew Bomett, VP &amp; Chief Information Security Officer, Boston Scientific Increasingly, hospital systems today find themselves targeted by cybercriminals. A Journal of the American Medical Association report found that between 2016 and 2021, the number of ransomware attacks on ... Keep ReadingTo Keep Patients Safe and their Data Secure, We Need to Work Together","og_url":"https:\/\/themedtechconference.com\/keep-patients-data-secure\/","og_site_name":"The MedTech Conference","article_publisher":"https:\/\/www.facebook.com\/MedTechCon\/","article_published_time":"2023-08-31T13:45:25+00:00","article_modified_time":"2023-08-31T13:45:26+00:00","og_image":[{"url":"https:\/\/themedtechconference.com\/wp-content\/uploads\/Andrew-Bomett-854x1024.jpg","type":"","width":"","height":""}],"author":"Wintana Zerai","twitter_card":"summary_large_image","twitter_creator":"@medtechcon","twitter_site":"@medtechcon","twitter_misc":{"Written by":"Wintana Zerai","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/themedtechconference.com\/keep-patients-data-secure\/#article","isPartOf":{"@id":"https:\/\/themedtechconference.com\/keep-patients-data-secure\/"},"author":{"name":"Wintana Zerai","@id":"https:\/\/themedtechconference.com\/#\/schema\/person\/7879f17c5a24fa5824a51fd78325f7dd"},"headline":"To Keep Patients Safe and their Data Secure, We Need to Work Together","datePublished":"2023-08-31T13:45:25+00:00","dateModified":"2023-08-31T13:45:26+00:00","mainEntityOfPage":{"@id":"https:\/\/themedtechconference.com\/keep-patients-data-secure\/"},"wordCount":615,"publisher":{"@id":"https:\/\/themedtechconference.com\/#organization"},"image":{"@id":"https:\/\/themedtechconference.com\/keep-patients-data-secure\/#primaryimage"},"thumbnailUrl":"https:\/\/themedtechconference.com\/wp-content\/uploads\/Andrew-Bomett-854x1024.jpg","inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/themedtechconference.com\/keep-patients-data-secure\/","url":"https:\/\/themedtechconference.com\/keep-patients-data-secure\/","name":"To Keep Patients Safe and their Data Secure, We Need to Work Together - The MedTech Conference","isPartOf":{"@id":"https:\/\/themedtechconference.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/themedtechconference.com\/keep-patients-data-secure\/#primaryimage"},"image":{"@id":"https:\/\/themedtechconference.com\/keep-patients-data-secure\/#primaryimage"},"thumbnailUrl":"https:\/\/themedtechconference.com\/wp-content\/uploads\/Andrew-Bomett-854x1024.jpg","datePublished":"2023-08-31T13:45:25+00:00","dateModified":"2023-08-31T13:45:26+00:00","breadcrumb":{"@id":"https:\/\/themedtechconference.com\/keep-patients-data-secure\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/themedtechconference.com\/keep-patients-data-secure\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/themedtechconference.com\/keep-patients-data-secure\/#primaryimage","url":"https:\/\/themedtechconference.com\/wp-content\/uploads\/Andrew-Bomett-854x1024.jpg","contentUrl":"https:\/\/themedtechconference.com\/wp-content\/uploads\/Andrew-Bomett-854x1024.jpg"},{"@type":"BreadcrumbList","@id":"https:\/\/themedtechconference.com\/keep-patients-data-secure\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/themedtechconference.com\/"},{"@type":"ListItem","position":2,"name":"To Keep Patients Safe and their Data Secure, We Need to Work Together"}]},{"@type":"WebSite","@id":"https:\/\/themedtechconference.com\/#website","url":"https:\/\/themedtechconference.com\/","name":"The MedTech Conference","description":"Where Medtech Innovates","publisher":{"@id":"https:\/\/themedtechconference.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/themedtechconference.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/themedtechconference.com\/#organization","name":"AdvaMed","alternateName":"The MedTech Conference","url":"https:\/\/themedtechconference.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/themedtechconference.com\/#\/schema\/logo\/image\/","url":"https:\/\/themedtechconference.com\/wp-content\/uploads\/MTC23-brand.png","contentUrl":"https:\/\/themedtechconference.com\/wp-content\/uploads\/MTC23-brand.png","width":831,"height":172,"caption":"AdvaMed"},"image":{"@id":"https:\/\/themedtechconference.com\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/MedTechCon\/","https:\/\/x.com\/medtechcon","https:\/\/www.instagram.com\/themedtechconference\/","https:\/\/www.linkedin.com\/company\/the-medtech-conference\/","https:\/\/www.youtube.com\/user\/AdvaMedConference\/"]},{"@type":"Person","@id":"https:\/\/themedtechconference.com\/#\/schema\/person\/7879f17c5a24fa5824a51fd78325f7dd","name":"Wintana Zerai","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/themedtechconference.com\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/ac474fb8b05291886e112ecd78bad9ff9cc9ed6e77819016270fb26d61f4134b?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/ac474fb8b05291886e112ecd78bad9ff9cc9ed6e77819016270fb26d61f4134b?s=96&d=mm&r=g","caption":"Wintana Zerai"},"url":"https:\/\/themedtechconference.com\/author\/wintana\/"}]}},"_links":{"self":[{"href":"https:\/\/themedtechconference.com\/api\/wp\/v2\/posts\/16702","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/themedtechconference.com\/api\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/themedtechconference.com\/api\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/themedtechconference.com\/api\/wp\/v2\/users\/23"}],"replies":[{"embeddable":true,"href":"https:\/\/themedtechconference.com\/api\/wp\/v2\/comments?post=16702"}],"version-history":[{"count":0,"href":"https:\/\/themedtechconference.com\/api\/wp\/v2\/posts\/16702\/revisions"}],"wp:attachment":[{"href":"https:\/\/themedtechconference.com\/api\/wp\/v2\/media?parent=16702"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/themedtechconference.com\/api\/wp\/v2\/categories?post=16702"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/themedtechconference.com\/api\/wp\/v2\/tags?post=16702"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}