Lexology May 5, 2022
On April 08, 2022, the Food and Drug Administration (FDA) published a draft cybersecurity guidance document for medical devices, titled Cybersecurity in Medical Devices: Quality System Considerations and Content of Premarket Submissions. The draft guidance covers a wide range of issues, including cybersecurity device design, labeling, and documentation. The guidance is intended to provide medical device makers a road map on how to satisfy the FDA’s quality system and patient safety regulations and how to address cybersecurity considerations within their premarket submissions.
The FDA’s draft guidance was released shortly before a report underlining the cybersecurity security practice deficiencies of various medical device makers. On April 20, 2022, Cybellum – a company specializing in assessing product security – reported the results...