Cybersecure Data & Devices
Leading a “whole-of-community” approach to securing connected medical devices and patient data from active cyber adversaries.
NIST’s Applied Cybersecurity Division Chief Kevin Stine discusses his strategic vision for Cybersecurity and Privacy Applications, Cybersecurity Framework, NCCoE, National Initiative for Cybersecurity Education, and Privacy Engineering and Risk Management in this HIMSS18 presentation.
In this HIMSS18 presentation by Cathy Petrozzino learn through an actual use case how cyber collaboration has helped organizations across the cyber spectrum, large, medium, and small, to better defend themselves against cyber attacks.
The telehealth ecosystem is a complex combination of technologies enabling new capabilities for delivery of patient centric care. This HIMSS18 session by Ronnie Daldos, MITRE, introduces threat based defense as a key component of a comprehensive risk management strategy.
The recent escalation of cyber-attacks and the potential for combined cyber and physical attacks means the healthcare industry must better secure itself. In this HIMSS18 presentation, Margie Zuk and Penny Chase from MITRE share a “whole of community” approach to proactively developing regional plans, models and playbooks that integrate cyber into overall emergency preparedness and response.
The Adversarial Tactics, Techniques, & Common Knowledge (ATT&CK™) family of models, developed for public use by the MITRE Corporation, provides a methodology for characterizing and describing the actions an adversary may take while operating on specific platforms within an enterprise network. This HIMSS18 session by Denise Anderson, NH-ISAC and Julie Connolly, MITRE explains the ATT&CK family models in detail and describes the healthcare ATT&CK-based analytic developments.
Medical device cybersecurity continues to evolve. This HIMSS18 presentation by session by Seth Carmody, PhD (FDA) and Penny Chase, MITRE characterizes the initiatives such as development of a Common Vulnerability Scoring System (CVSS) rubric, as well as the relevant FDA and community roles, in helping to realize safer, more secure device clinical operation and use.
NIST’s Applied Cybersecurity Division Chief Kevin Stine alongside Cybersecurity Researcher Kevin Littlefield discuss the newest healthcare sector project, Securing Picture Archiving and Communication System (PACS) in this HIMSS18 presentation.
The ATT&CK framework breaks down and classifies attacks in a consistent and clear manner that can make it easier to compare and contrast them to find how the attacker exploited your networks and endpoints and penetrated your network.
The need for effective cybersecurity to assure medical device functionality and safety has become more important with the increasing use of wireless, Internet- and network- connected devices, and the frequent electronic exchange of medical device-related health information. Learn more in the report “Content of Premarket Submissions for Management of Cybersecurity in Medical Devices” Guidance for Industry and Food and Drug Administration Staff.
Do you have expertise and want to help?
By working through these challenges together across government, public and private entities, and academia, we can solve problems for a safer world.