Authors: Aida Alvarenga, George Tanev
Journal Title: Technology Innovation Management Review
ISSN: 1927-0321 (Online)
Publisher: Carleton University
Society/Institution: Talent First Network
Medical devices today are more effective and connected than ever before, saving more patient lives and making healthcare practitioner’s jobs more efficient. But with this interconnectedness comes inherent concerns over increased cybersecurity vulnerabilities. Medical device cybersecurity has become an increasing concern for all relevant stakeholders including: patients, regulators, manufacturers, and healthcare practitioners. Although cybersecurity in medical devices has been covered in the literature, there is a gap in how to address cybersecurity concerns and assess risks in a way that brings value to all relevant stakeholders.
In order to maximize the value created from cybersecurity risk mitigations, we review literature on the state of cybersecurity in the medical device industry, on cybersecurity risk management frameworks in the context of medical devices, and on how cybersecurity can be used as a value proposition. We then synthesize the key contributions of the literature into a framework that integrates cybersecurity value considerations for all relevant stakeholders into the risk mitigation process.
This framework is subsequently applied to the hypothetical case of an insulin pump. Using this example case, we illustrate how medical device manufacturers can use the framework as a standardized method that can be applicable to medical devices at large. Our ultimate goal is to make cybersecurity risk mitigation an exploitable asset for manufacturers rather than a regulatory obligation.
Article distributed under license Attribution 3.0 Unported (CC BY 3.0)
Illustration Photo: Part of the "bionic pancreas" which monitors glucose levels and communicates with insulin and glucagon pumps to automatically infuse proper dosages into the bloodstream (credits: Intel Free Press / Flickr Attribution-ShareAlike 2.0 Generic (CC BY-SA 2.0))