Medical devices and systems represent a growing risk with respect to the security of the medical data they contain. Hospitals and similar healthcare organizations typically have 300% to 400% more medical equipment than IT devices and two trends are contributing to the increasing significance of this security risk:

1. Medical devices and systems are being designed and operated as special purpose computers … more features are being automated, increasing amounts of medical data are being collected, analyzed and stored in these devices.
2. There has been a rapidly growing integration and interconnection of disparate medical (and information) technology devices and systems where medical data is being increasingly exchanged.

HIMSS Medical Device Security Workgroup was convened earlier this year to address the need for a coordinated effort on this issue. The charter of this Workgroup, under the guidance of the HIMSS Privacy & Security Steering Committee is to:

• Identify both the security issues associated with medical devices & systems and the best practices available to address those issues
• Evaluate the issues of security threats and vulnerabilities that affect medical devices, both the provider and the equipment manufacturer's responses and responsibilities, and the legal and regulatory framework in which these issues must be addressed
• Coordinate with similar groups and committees, in HIMSS and other organizations, to capitalize on existing efforts and realize the economies of collaboration
• Prepare and endorse white papers, guidance documents, comments and recommendations on medical device security issues and practices for addressing those issues
• Educate HIMSS membership and the industry on the implications of medical device security through the publications, tools, resources and educational programs found in this focus area of HIMSS Web site.
  

Latest News:

New FDA 'Sentinel' System to Tie In Multiple Data Systems
Consistent with FDA’s mission to protect and promote the public health, the Agency is embarking on the Sentinel Initiative to create a national electronic safety system capable of monitoring the performance of all medical products following approval to evaluate their effects on the millions of Americans who use them.

Clinical Engineering Collaboration Web Site Launches
The new Clinical Engineering/IT (CEIT) community, made possible by a joint effort between AAMI, ACCE, and HIMSS, launched its new Web site today. The collaboration aims to pool resources on IT issues and develop guidance documents, share best practices, and promote an understanding of the issues surrounding the integration of IT and clinical engineering. The new site features more in-depth details about the joint effort and how to get involved.

HIMSS/NEMA Joint MDS2 Standards Writing Committee
The HIMSS Medical Device Security Work Group, along with the National Electronic Manufacturers Association's Medical Imaging Informatics Section, has formed the HIMSS/NEMA MDS2 Standards Writing Committee.

HIMSS Resources: