Cloud 101CircleEventsBlog
CSA's Continuous Audit Metrics Working Group is expanding! Help shape the future of cloud assurance.

Download Publication

Managing the Risk for Medical Devices Connected to the Cloud
Managing the Risk for Medical Devices Connected to the Cloud

Managing the Risk for Medical Devices Connected to the Cloud

Release Date: 03/16/2020

With the increased number of Internet of Things devices, Healthcare Delivery Organizations are experiencing a digital transformation bigger than anything in the past. The new breed of connected medical devices brings the promise of improved patient care, better clinical data, improved efficiency, and reduced costs; however, they also bring increased security risks. The goal of this paper is to present the concept of managing medical devices based on their proximity to the patient and introduce practices to secure the use of cloud computing for medical devices.


  • Medical device security lifecycle
    • Pre and post purchase deployment
    • Network
    • Web application interface
    • Wireless communications
    • Secure communications channels
  • Deployment/operations management based on degrees of separation from the patient
  • Decommission/Disposal
  • Recommendations and further reading
Download this Resource

Prefer to access this resource without an account? Download it now.

Bookmark
Share
Related resources
Data Loss Prevention in Healthcare
Data Loss Prevention in Healthcare
An Agile Data Doctrine for a Secure Data Lake
An Agile Data Doctrine for a Secure Data Lake
Healthcare Interoperability
Healthcare Interoperability
Other Practices Are Placing Greater Trust in AI... When Will Cybersecurity?
Other Practices Are Placing Greater Trust in AI... When Will Cybers...
Published: 02/22/2024
Defining 12 CSA Research Topics
Defining 12 CSA Research Topics
Published: 02/09/2024
Eight Cybersecurity Predictions for 2024 and Beyond
Eight Cybersecurity Predictions for 2024 and Beyond
Published: 01/30/2024
State of Zero Trust Across Industries
State of Zero Trust Across Industries
Published: 01/22/2024

Acknowledgements

Michael Roza
Michael Roza
Head of Risk, Audit, Control and Compliance

Michael Roza

Head of Risk, Audit, Control and Compliance

Since 2012 Michael has contributed to over 100 CSA projects completed by CSA's Internet of Things, Zero Trust/Software-Defined Perimeter, Top Threats, Cloud Control Matrix, Containers/Microservices, DevSecOps, and other working groups. He has also served as co-chair of CSA's Enterprise Architecture, Top Threats, and Security-as-a-Service working groups while also serving as the Standards Liaison Officer for IoT, ICS, EA, SECaaS, and Cloud K...

Read more

Shamun Mahmud
Shamun Mahmud
Senior Research Analyst, CSA

Shamun Mahmud

Senior Research Analyst, CSA

This person does not have a biography listed with CSA.

Vincent Campitelli
Vincent Campitelli

Vincent Campitelli

After retiring from McKesson Corporation in 2016, Vince joined the Office of the President within the Cloud Security Alliance (CSA). Serving as an Enterprise Security Specialist, Vince supports the vast membership base of CSA in consuming and leveraging the numerous services, tools and expanding scope of research devoted to Cloud Computing. With his background in both the healthcare and financial service industries, Vince actively works wit...

Read more

Are you a research volunteer? Request to have your profile displayed on the website here.

Interested in helping develop research with CSA?

Related Certificates & Training