Participate in the 2024 MDIC Medical Device Cybersecurity Benchmarking Assessment

The HHS Office for Civil Rights has reported a staggering 239% increase in healthcare-related hacking breaches since 2018. This alarming statistic is a wake-up call in an era where medical devices are increasingly interconnected. It poses a serious threat to patient safety, data privacy, and the foundation of our healthcare services.

The 2024 MDIC Medical Device Cybersecurity Benchmarking Assessment offers a valuable opportunity for organizations to assess and improve their security posture. This free, comprehensive assessment gives manufacturers actionable insights, enabling them to benchmark their cybersecurity participating, your organization can gain insights to enhance its defenses while contributing to a broader effort to safeguard the future of medical technologies.

With over half of connected medical devices in hospitals identified as having critical vulnerabilities, robust cybersecurity measures are crucial to protect patient care and ensure the reliability of medical technologies.

About the 2024 MDIC Cybersecurity Maturity Benchmarking Assessment

The MDIC Maturity Cybersecurity Benchmarking Assessment aims to evaluate cybersecurity maturity across the medical device sector. Developed in collaboration with the Health Sector Coordinating Council (HSCC) and Apraciti, this comprehensive tool seeks to establish a standardized measure of cybersecurity practices, identify areas for improvement across the industry, and drive advancements in cybersecurity protocols for medical technologies.

Important Dates and Guidelines

Assessment submissions are open from October 8, 2024, to December 13, 2024.

The assessment takes approximately 15-30 minutes to complete, using the Medical Device and Health IT Joint Security Plan’s (JSP) maturity assessment framework. Previous experience with the JSP is not required to participate.

Access the assessment.

Who Should Participate?

Medical device manufacturers are encouraged to participate to gain insights into potential vulnerabilities, benchmark your cybersecurity performance against peers, and strengthen your cybersecurity programs.

Who Can Complete the Assessment?

A cross-functional team with expertise in product security, quality, R&D, and risk management is ideal for completing the assessment. This team should have direct knowledge of the organization’s product portfolio and cybersecurity posture. If a cross-functional team is unavailable, a senior member of the product security organization is recommended to provide accurate responses.

Why Participate?

Through this assessment, your organization can improve its cybersecurity posture and contribute to the broader effort of shaping the future of medical device cybersecurity. Upon completion, participants will receive a high-level report detailing their overall score, category-specific sub-scores (Organization, Risk Management, Design Control & Complaint Handling), and a comparison with industry peers.

MDIC will leverage the findings from the assessment to develop a comprehensive understanding of the current state of cybersecurity in the medical device landscape. These insights will inform the creation of resources that help measure cybersecurity maturity over time and drive industry growth through continuous improvements in product security. The results will be published in MDIC’s Annual Medical Device Cybersecurity Maturity Industry Benchmarking Report. Only non-identifiable, anonymized summaries of the overall findings will be shared publicly in this report. Access the previous reports for additional information.

Cybersecurity for the Future

The MDIC Medical Device Benchmarking Cybersecurity Maturity Assessment is a valuable opportunity for you to strengthen your cybersecurity strategies. This assessment offers actionable results that will help you improve security, protect sensitive data, and stay ahead of emerging threats. By contributing, you’re helping both your organization and the industry move toward a more secure future.