Health Systems Must Develop Plans to Assume Cyber Responsibility for Medical Devices When Manufacturer Support Wanes

As medical devices grow more connected and reliant on networked systems, healthcare organizations must take a more active role in securing them throughout their lifecycle, according to a new report from Health-ISAC. 

The report outlines the shifting responsibilities of cybersecurity management as devices transition from manufacturer support to the hands of healthcare delivery organizations (HDOs), emphasizing that HDOs cannot rely solely on manufacturers to maintain security over time.

Sections covered in this article include:

• Shifting Cybersecurity Responsibilities to HDOs
• Managing Risks for Legacy Devices
• Documentation and Compliance Challenges
• Take It Away
• A Call for Proactive Security Measures

Read the full article in HealthSystem CIO.com. Click Here

• Related Resources & News
• New Cybersecurity Policies Could Protect Patient Health Data
• CyberWire Podcast: PHP flaw sparks global attack wave
• Health-ISAC Hacking Healthcare 3-14-2025
• HSCC Aiming to Identify Healthcare Workflow Chokepoints
• New Healthcare Security Benchmark Highlights Key Investment Priorities and Risks
• Are Efforts to Help Secure Rural Hospitals Doing Any Good?
• CISA cuts $10 million annually from ISAC funding for states amid wider cyber cuts
• 2024 Health-ISAC Discussion Based Exercise Series After-Action Report
• Cobalt Strike takedown effort cuts cracked versions by 80%
• Denise Anderson recognized on Cyber25 Women of Impact list