Clean Sweep Live Auction on Wed. May 1st. Click to view the full inventory

DOTmed Home MRI Oncology Ultrasound Molecular Imaging X-Ray Cardiology Health IT Business Affairs
News Home Parts & Service Operating Room CT Women's Health Proton Therapy Endoscopy HTMs Pediatrics
Current Location:
> This Story

Log in or Register to rate this News Story
Forward Printable StoryPrint Comment




Health IT Homepage

HDOs: Address IoT security governance today for a more secure tomorrow Implementing a solid program is the best defense against attack

VisualDx to develop decision support platform for ultrasound in space Provide basic guidance on ultrasound interpretation

HHS releases second draft of TEFCA for nationwide interoperability Requirements for sharing electronic health information

Want to reduce readmissions? Let’s start with keeping patients healthier Insights from Robin Hill, chief clinical officer at Vivify Health

Decision support software could reduce scans by 6 percent: MIT researchers Prevent overuse of powerful and costly imaging exams

CMS to add more telehealth benefits to Medicare Advantage plans Aiming for greater flexibility, lower costs

Fredrik Palm ContextVision appoints new CEO

Trice Imaging connects imaging devices of large chain healthcare provider Aleris Patients and physicians can view images on laptops, cell phones

Three recommendations to better understand HIPAA compliance Approximately 70 percent of organizations are not HIPAA compliant

Researchers orchestrate malware attack to expose imaging vulnerabilities Deceived radiologists and AI algorithms into misdiagnoses

Five best practices for bringing new devices into the hospital securely

By Mike Kijewski

Cybersecurity has emerged as a critical risk to healthcare delivery organizations (HDOs) and their patient data. In 2017, there were 477 healthcare breaches reported to the U.S. Department of Health and Human Services (HHS) or the media, which affected a total of 5.579 million patient records, according to Protenus.

Story Continues Below Advertisement


Special-Pricing Available on Medical Displays, Patient Monitors, Recorders, Printers, Media, Ultrasound Machines, and Cameras.This includes Top Brands such as SONY, BARCO, NDS, NEC, LG, EDAN, EIZO, ELO, FSN, PANASONIC, MITSUBISHI, OLYMPUS, & WIDE.

Securing medical devices prevents them from becoming a conduit for an attack, while also ensuring the confidentiality, integrity, and availability of data stored on or transmitted to a device.

Engaging the security team in the procurement process will ensure best-in-class practices are brought to HDOs. Cybersecurity risks in particular cut across every major function and business line. We have identified five best practices when collaborating with IT, engineering, operations, legal, finance and others to bring new devices into an HDO:

● Understanding the flow of data. It's crucial to assess what type of data the medical device will create, store and transmit within the device as well as the broader healthcare organization. Device vendors should clarify whether the device has any removable media ports (e.g., USB). This will allow a risk assessment of the device to drive subsequent security implementation.

● Access Considerations. User authentication is the root cause in 44% of all medical device vulnerabilities, validating the importance of password complexity and a strict user provisioning process being supported by a device vendor. Clarity on whether the device supports encryption of data both at rest and in transit brings layers of redundancy to an HDO security posture.

● Ongoing Support. The importance of software patch management on devices cannot be overstated. Security evolves over time with the identification, addressing and managing of threats on an ongoing basis. The FDA recently published a preferential 60-day time frame for devices to be updated for known vulnerabilities – confirming a device vendor can accommodate this.

● Notifications. Monitoring device behavior is a requirement in the recent premarket cybersecurity guidance from the FDA. Vendor-supported analytics per serial numbered device (including information such as technical specifications, patching status and known vulnerabilities) can go a long way to supporting the HDO in fighting the asset management challenge they face. This device-specific insight can be used to meet the FDA requirement to identify an anomalous device behavior, diagnose the cause and alert the HDO when appropriate.
  Pages: 1 - 2 >>

Health IT Homepage

You Must Be Logged In To Post A Comment

Increase Your
Brand Awareness
Auctions + Private Sales
Get The
Best Price
Buy Equipment/Parts
Find The
Lowest Price
Daily News
Read The
Latest News
Browse All
DOTmed Users
Ethics on DOTmed
View Our
Ethics Program
Gold Parts Vendor Program
Receive PH
Gold Service Dealer Program
Receive RFP/PS
Healthcare Providers
See all
HCP Tools
A Job
Parts Hunter +EasyPay
Get Parts
Recently Certified
View Recently
Certified Users
Recently Rated
View Recently
Certified Users
Rental Central
Rent Equipment
For Less
Sell Equipment/Parts
Get The
Most Money
Service Technicians Forum
Find Help
And Advice
Simple RFP
Get Equipment
Virtual Trade Show
Find Service
For Equipment
Access and use of this site is subject to the terms and conditions of our LEGAL NOTICE & PRIVACY NOTICE
Property of and Proprietary to DOTmed.com, Inc. Copyright ©2001-2019 DOTmed.com, Inc.