Cybersecurity Benchmarking

To establish a standardized measure for cybersecurity maturity across the medical device industry and identify areas for improvement.

Any medical device manufacturer. Th online self assessment can be filled by  cross-functional team within your organization, including representatives from product security, quality, R&D, and risk management.

Gain insights into your organization’s cybersecurity maturity, identify areas for improvement, and benchmark against industry peers.

No, participation is voluntary.

No, the assessment is free.

Approximately 15-30 minutes.

Yes, all identifiable information provided by survey respondents will be kept confidential and withheld from regulatory or governing bodies.

Only non-identifiable, anonymous summaries of the overall findings will be made public through the Annual MDIC cybersecurity maturity: Industry Benchmarking Report.

Yes, please email cybersecurity@mdic.org for any questions or inquiries.

Survey/self assessment for manufacturers opens in October every year and closes by December. The annual benchmark report is published in early spring of the following year.

Annual benchmark reports provide a summary of the cybersecurity maturity trends observed across the medical device industry based on the data collected through the benchmarking assessment.

The reports are generated by analyzing the aggregated data from participating manufacturers.

The reports typically include:

• Overall industry trends in cybersecurity maturity
• Comparisons of maturity levels across different device types or organizational sizes
• Insights into emerging cybersecurity threats and challenges
• Recommendations for improving cybersecurity practices

MDIC Annual benchmark reports are made available to the public through MDIC’s website. Please click here to access the latest report.