Summary: CloudWave has renewed its MOU with the FDA to continue sharing critical threat intelligence concerning medical device security, enhancing collaboration and communication to tackle cybersecurity risks in healthcare IT infrastructure.


Key Takeaways:

  • The renewed partnership aims to address and mitigate cybersecurity threats to medical devices and healthcare IT.
  • CloudWave’s ISAO focuses on disseminating cybersecurity intelligence and best practices across the U.S. healthcare sector.
  • The collaboration supports rapid sharing of vulnerabilities and solutions within the healthcare ecosystem to safeguard patient safety.

CloudWave will continue to share critical cybersecurity intelligence in cases of nationwide suspected threats to medical device security. The company has renewed its Memorandum of Understanding (MOU) with the U.S. Food and Drug Administration (FDA), agreeing to collaborate on cybersecurity threats to medical devices.

Enhancing Cybersecurity Collaboration

The renewal extends the partnership between the organizations, fostering an environment that encourages collaboration and communication. This effort addresses cybersecurity risks that may impact the safety, effectiveness, and security of medical devices, as well as the integrity and security of the surrounding healthcare IT infrastructure.

CloudWave’s Information Sharing and Analysis Organization (ISAO) focuses on exchanging cybersecurity threat intelligence, best practices, toolkits, and more across its member base and interested parties in the United States.

FDA’s Efforts in Cybersecurity

The FDA’s Center for Devices and Radiological Health (CDRH) is actively working with partners like CloudWave to reduce public health risks by enabling the rapid sharing of medical device vulnerabilities, threats, and mitigations within the hospital and healthcare ecosystem.

The partnership between CloudWave’s Sensato Cybersecurity team and the FDA began in 2016, aimed at streamlining communication to better address medical device cybersecurity. The team has developed a vendor assessment framework, a cybersecurity medical device policy, and other best practices for safeguarding patient lives.

CloudWave’s Mission and Services

“More than ever before, medical devices are being targeted, and we are focused on developing innovative strategies to assess and mitigate cybersecurity threats,” stated John Gomez, chief engineering and security officer at CloudWave. “By proactively sharing information regarding cybersecurity vulnerabilities, we can gain the timely situational awareness needed to reduce the attack surface and protect patient safety.”

The partnership with the FDA is integral to CloudWave’s mission of providing proactive, comprehensive cybersecurity protection for healthcare. CloudWave enables hospitals to implement a fully managed cybersecurity program that is HIPAA and NIST compliant, with service and support from a single provider.