Medical Device Cybersecurity – Overview
Overview
Cyber threats pose significant risks to patient safety and accessibility. MDIC Cybersecurity program promotes and benchmarks mature risk management practices and nurtures approaches to address system-level risks. Cybersecurity is a paramount concern for medical devices, given their increasing interconnectedness and the potential for devastating impacts on patient health and national security.
MDIC Cybersecurity Executive Committee, composed of experts from industry and FDA, meets regularly to collaborate on solutions. By identifying priorities through collaborative discussions, MDIC aims to protect patient safety and contribute to a more secure healthcare ecosystem.
Mission
Increase and enable sector expertise, collaboration, methodologies, and transparency to support the developing and maintaining of safe and secure medical devices throughout the total product lifecycle.
Vision
Advance cybersecurity maturity and resiliency in medical device technologies, accelerating the secure integration of technologies and processes into healthcare delivery.
Explore the 2025 MDIC Cybersecurity Benchmarking Report
The MDIC Cybersecurity Benchmark Report offers a timely benchmark for cybersecurity professionals in the medical device industry, highlighting the evolving intersection of technical safeguards, regulatory compliance, and clinical integration. As connected health technologies scale and FDA expectations intensify, the report provides a strategic lens on current industry posture—and the critical steps needed to advance transparency, resilience, and patient safety across the device ecosystem.
Cybersecurity Focus Areas
Threat Modeling
Penetration Testing
Medical Device Cybersecurity Benchmarking
Cybersecurity Resources
Playbook for Threat Modeling Medical Devices
MDIC Medical Device Cybersecurity Maturity: Industry Benchmarking Report 2023
Coordinated Vulnerability Disclosure (CVD) for Medical Device Cybersecurity Report
Cybersecurity Leadership
Chris Reed (Co-Lead)
Medtronic, Vice President of Product Security
Aftin Ross (Co-Lead)
FDA, Deputy Office Director, Office of Readiness and Response
Edison Alvarez
Senior Director in Regulatory Affairs
Dirk de Wit
Global Product Security & Services Officer
Rene Pluis
Global Cyber Security Remediation Manager
Dan Lyon
Adam Lacy
Senior Global Head of Product, Director, Security Digital, Robotics & Enabling Technologies
Bill O'Connell
Global Head of Security and Privacy
Tom Pendergast
Director, Product Security
Jessica Wilkerson
Senior Cyber Policy Advisor
Nastassia Tamari
Division Director, Division of Medical Device Cybersecurity
Scott Nichols
Global Product Security Leader
Curt Blythe
Director, Product Security
Hans-Martin von Stockhausen
Chief Product Security Officer
Kristen Killheffer
Cybersecurity Regulatory Policy
Sateesh Bolloju
Global Director, R&D - Product Security
Michele Lee
Regulatory Science Program Manager