The Exploit Prediction Scoring System (EPSS) can help healthcare organizations prioritize security vulnerabilities, but it has limitations in IoMT environments. While EPSS provides valuable data-driven prioritization, it should be combined with other risk assessments, cybersecurity frameworks, and strategies to more comprehensively secure healthcare systems’ IoMT devices.
Dave Bailey, VP of Consulting Services at Clearwater Security, highlights the need for top-down support in managing healthcare-related cyber risks and how the new NIST Cybersecurity Framework can help enhance cybersecurity in healthcare and MedTech organizations.
The dramatic increase of medical devices in patient care has yielded many benefits. However, this technology also carries various risks, including risks to patient privacy, that must be addressed.
The purpose of the Best Practices in Supply Chain Resiliency and Quality Working Group is to improve medical device quality and supply chain resiliency by expanding MedAccred adoption through the tiers in the supply chain, identifying best practices to supplement efforts in quality assurance and procurement strategies, and to help mitigate supply chain risks.
The revised cybersecurity draft publication is not intended to be a checklist for healthcare organizations to follow, but rather a guide to help them comply with the HIPAA Security Rule.
As the proliferation of connected and complex medical devices grows, healthcare providers are more susceptible to cyberattacks.
