--- 🔥 MedTech Europe position on Cybersecurity 🔥 ---
In this position paper, MedTech Europe outlines three key areas of discussion for regulators, medical device manufacturers, healthcare systems and society-at-large.
Firstly, that the security of medical technologies continues to be regulated under sectoral legislation. The Medical Devices Regulation and the In Vitro Diagnostic Medical Devices Regulation (‘MDR’ and ‘IVDR’) lay out essential requirements for digital medical technologies and services, including Medical Device Software (MDSW) placed on the EU market. In addition, MDCG 2019-16 rev.1 guidance on cybersecurity, provides medical technology manufacturers with the necessary guidance on fulfilling the relevant General Safety and Performance Requirements of MDR and IVDR respectively, with regards to cybersecurity. It also provides guidance on how to comply with both the Network and Information Security Directive (‘NIS1’), and the General Data Protection Regulation (‘GDPR’), both of which apply to medical technology manufacturers.
Secondly, the paper underlines MedTech Europe’s commitment against ransomware, and other malicious interference with healthcare delivery in Europe. MedTech Europe welcomes legislative interventions aimed at reinforcing existing cybersecurity responsibilities and curbing tactics employed by potential cyber-attackers and cyber-criminals. .../... MedTech Europe welcomed the revision of the Network and Information Security Directive (known as ‘NIS2’), as a means of reinforcing the digital resilience of states and businesses, while ensuring that they increase their investments in cybersecurity. While we welcome such legislative intervention, we believe that it should be combined with tangible investments in organisations’ security postures, resilience of digital tools and processes, and the investment in people and the skills necessary to deliver on such legislation.
Finally, the paper highlights MedTech Europe’s support for measures aimed at improving the level of overall digital literacy, and particularly, cybersecurity skills. We also applaud the European Commission’s efforts to improve the situation, particularly through the European Skills Agenda Digital Education Action Plan, as well as the recently published communication for a Cybersecurity Skills Academy. "
👇 Do not hesitate contacting me 👇 if you need Regulatory Assistance!
Jean-Luc Leneindre.
📧 jleneindre@namsa.com
📞 +33 (0)622 209 153
🌍 https://namsa.com/
#medicaldevices #eumdr #cybersecurity
President at Senxis Solutions, Inc.
2moLooks like a good range of topics. I would add at least one sub-section on HIPPA and HiTECH. maybe in chapter 17. These regulations are the "why" security is a top priority in medical. One more topic, IoT is now hot technology in Remote Monitoring. Deploying and Securing the various wireless protocols is mandatory.