Healthcare delivery organizations (HDOs) face increasing cyber threats targeting connected medical devices (IoMT). These devices often lack basic security controls, operate on outdated software, or are not integrated into enterprise risk processes. Unlike traditional IT assets, medical devices present unique challenges—such as clinical safety implications, vendor lock-in, and limited patchability.

Despite this, many HDOs still do not apply structured or continuous risk management to their connected clinical devices. Risk decisions are frequently reactive, undocumented, or made in isolation by HTM or IT teams without shared ownership. This exposes hospitals to preventable attacks, patient safety risks, and regulatory non-compliance.

What You’ll Learn

This course equips HTM, IT security, and risk management professionals with the knowledge and tools to implement structured, risk-based medical device cybersecurity programs. Rather than reacting to every new vulnerability or device issue, learners will discover how to prioritize based on clinical impact, exposure, and exploitability.

The course introduces proven frameworks (e.g., NIST CSF,), scoring models (CVSS + clinical modifiers), and tools (MDS2, SBOM, risk registers) to help learners assess, document, and respond to device security risks—whether through patching, segmentation, or formal exception processes. Learners will also explore how to integrate medical device risks into broader enterprise security and compliance strategies.

Medical Device Cybersecurity Module 6: Managing What Matters

Duration

Format

Certificate + CEUs

Instructors

Register Today

Key topics include:

Participants will be able to:

Register Today

Questions?

Start the Conversation