The guidance marks the latest in the FDA’s continued attempts to guard against cybersecurity risks, which have become all the more prevalent in recent years. And given the huge amount of sensitive information these devices could contain, it’s imperative that users are kept safe.
“All medical devices that use software and are connected to hospital and health care organizations’ networks have vulnerabilities — some we can proactively protect against, while others require vigilant monitoring and timely remediation,” said the FDA’s Suzanne Schwartz, who serves as the associate director for science and strategic partnerships and acting director of emergency preparedness/operations and medical countermeasures. “Today’s draft guidance will build on the FDA’s existing efforts to safeguard patients from cyber threats by recommending medical device manufacturers continue to monitor and address cybersecurity issues while their product is on the market.”
While there are no legal implications involved with the new guidelines, the FDA is urging manufacturers everywhere to remain vigilant about their products — companies should take steps to monitor and assess risk, disclose vulnerabilities, and do everything they can to be proactive about fighting cybersecurity issues.
Said Schwartz, “Only when we work collaboratively and openly in a trusted environment, will we be able to best protect patient safety and stay ahead of cybersecurity threats.”
Editors' Recommendations
- Alphabet’s health watch monitors your heart health, is approved by the FDA
- From drones to smart pills, 2018 saw significant tech advances in medicine
- IBM’s new A.I. warns diabetes patients of dangerous blood sugar levels
- Wearable device spots signs of an opioid overdose, automatically calls for help
- 5 ways Norton products can help protect against cybercrime this holiday season
