HTMLive! Spotlight Series: Cybersecurity

Sponsored by Medigate by Claroty

In an AAMI HTMLive! 6-part series, experts will explain the unique variations that the United States Department of Health and Human Services has recommended to traditionally IT-centric security practices in order to address medical device cybersecurity challenges. This series is available to the HTM community at no cost, thanks to the support of our sponsor, Medigate by Claroty.

 

HTMLive! Operationalizing Asset Management & Procurement Cybersecurity

ServiceNow and Medigate by Claroty have created an advanced integration and new workflow model for medical device asset management. Join us to learn why Asset Management is the first step on a cyber and operational resilience journey for medical device security.
May 16 | 2:00 - 3:00 PM ET

Speakers:

  • Ty Greenhalgh, Industry Principal, Healthcare – Medigate by Claroty
  • Mike Lussie, Global GM Healthcare and Lifesciences – ServiceNow


Security on the Edge: Endpoint Protection

HHS recently provided a significant update to their Health Industry Cybersecurity Practices (HICP) for Medical Device Security. HICP points out that traditional endpoint security solutions don’t support medical devices the same way they support IT devices. Realizing this limitation, Crowdstrike and Medigate by Claroty have created a new level of integration extending the features of endpoint protection to the connected medical device inventory.
May 18 | 2:00 - 3:00 PM ET

Speakers:

  • Ty Greenhalgh, Industry Principal, Healthcare – Medigate by Claroty
  • Todd Felker, Executive Healthcare Strategist - CrowdStrike

MCS Transform Weakness into Strength: Vulnerability Management

Vulnerability Management solutions are rarely used to scan medical devices because the aggressive network communication can disrupt device operations, so how can it be a Best Practice? Join Rapid 7 and Medigate to learn how your Vulnerability Management can be extended to your medical and building management systems.
June 12 | 2:00 - 3:00 PM ET

Speakers:

  • Ty Greenhalgh, Industry Principal, Healthcare – Medigate by Claroty
  • Deral Heiland, Principal Security Researcher IoT – Rapid 7

Learn to “Trust” Again: Zero Trust, Network Mgmt & Identity Access

President Biden’s Executive Order to Improve the Nation's Cybersecurity called for Zero Trust or Least Privilege network communications to be implemented. HICP also identifies Zero Trust/Least Privilege as a Best Practice. In this series, the common thread is that IT-centric security approaches applied to connected medical devices without modification fail. Network Management is no exception. Pitfalls, roadblocks, and project delays await organizations that incorrectly analyze and manage the network traffic of medical devices.
July 11 | 2:00 - 3:00 PM ET

Speakers:

  • Ty Greenhalgh, Industry Principal, Healthcare – Medigate by Claroty
  • Ross Sweetzir, Global Healthcare Solutions Architect - Cisco

Contract Negotiation is a Tango – Learn How to Lead

The Model Contract-Language for Medtech Cybersecurity (MC2) is a reference document that suggests cybersecurity terms and conditions of medical device procurements and servicing between HDOs and MDMs. The framework of MC2 includes 14 core principles aligned with industry standards & best practices to address the security safeguards of a medical device in a healthcare environment. This framework represents a groundbreaking joint effort between MDMs, HDOs, and Group Purchasing Organizations to collaboratively ensure patient safety.
August 15 | 2:00 - 3:00 PM ET

Speakers:

  • Ty Greenhalgh, Industry Principal, Healthcare – Medigate by Claroty
  • Emily Holmquist, Sr Staff Product Security Engineer - Illumina

When Life Support Needs Life Support – Legacy Devices

Legacy Equipment is a pervasive issue. The Legacy question is a Problem for both Manufacturers and Healthcare Delivery Organizations. 39% of IOT and 53% of Medical Devices today are Legacy (Forescout, 2019). The complexity of the Healthcare Sector has led to a unique challenge in the healthcare industry where managing legacy devices is critical to healthcare delivery, especially with a moderate amount of contention about who is responsible. Keeping in mind that the IMDRF has defined Legacy devices as medical devices that cannot be reasonably protected against current cybersecurity. That has led to a unique vulnerability posture across the industry.
September 12 | 2:00 - 3:00 PM ET

Speakers:

  • Ty Greenhalgh, Industry Principal, Healthcare – Medigate by Claroty
  • Samantha Jacques, Vice President – McLaren Health System