March 24, 2024
Presented by Shift5 & W2 Communications
Enhancing Security for Medical Devices in the VA's Network
Amber Pearson, Deputy CISO at the VA, discusses the critical challenge of securing a rapidly expanding array of medical devices connected to the network. With medical technology advancing, devices from wearable tech to bedside monitors not only improve patient care but also increase the cybersecurity risk landscape. Pearson emphasizes the importance of secure-by-design principles, vendor partnerships, and a nuanced approach to risk management tailored to the unique aspects of medical devices.
Key Takeaways:
- Secure by Design: Emphasis on purchasing devices that are inherently secure to mitigate risks from the outset.
- Vendor Partnerships: Strong collaboration with vendors to ensure they meet the VA's stringent security expectations.
- Tailored Risk Management: Adapting standard risk management frameworks to address the specific complexities of securing medical devices.
Addressing GPS Spoofing Threats to National Security
Ronak Shah, Senior Director, Research at Shift5, highlights the national security implications of GPS spoofing, where false GPS signals mislead the positioning of military and civilian assets. Shah points out the critical need for diverse data analysis and observability of military platforms to counteract these threats effectively. He advocates for improved data gathering and analysis capabilities within the Department of Defense to stay ahead of adversaries' evolving tactics.
Key Takeaways:
- Diverse Data Analysis: The necessity of analyzing varied data sets to understand and mitigate GPS spoofing threats.
- Enhanced Observability: Strengthening the observability of military platforms to detect and counteract spoofing incidents.
- Continuous Innovation: Urging the DoD to invest in advanced position, navigation, and timing technologies to outpace adversary capabilities.
CMS's Strategy for Driving Digital Transformation in Healthcare
Andrea Fletcher, Chief Digital Strategy Officer at Digital Service at Centers for Medicare & Medicaid Services (CMS), underscores the agency's commitment to fostering digital transformation within the fragmented U.S. healthcare system. By engaging with industry at HIMSS 2024, Fletcher seeks insights on cybersecurity, AI, interoperability, and digital standards. She emphasizes CMS's pivotal role in setting data standards and regulations to ensure secure, efficient, and patient-centered healthcare services, leveraging digital innovation.
Key Takeaways:
- Industry Engagement: Actively seeking industry feedback to understand technology needs and expectations from CMS.
- Cybersecurity Focus: Recognizing the vital importance of cybersecurity in protecting healthcare data across diverse providers.
- Standards and Regulation: CMS's crucial role in establishing data standards and regulatory frameworks to enable effective digital transformation in healthcare.