"Bill Calls on FDA to Regularly Update Medical Device Security Guidelines"

The Strengthening Cybersecurity for Medical Devices Act would require the US Food and Drug Administration (FDA) to review and update its medical device security guidelines more frequently. Senators Jacky Rosen (D-NV) and Todd Young (R-IN) introduced the bipartisan legislation, calling on the FDA to collaborate with the US Homeland Security Department's Cybersecurity and Infrastructure Security Agency (CISA) to review industry guidance, make appropriate updates every two years, and provide the industry with new information about how to strengthen medical device cybersecurity. This information would include guidelines for identifying and addressing medical device security vulnerabilities, as well as how providers, health systems, and medical device manufacturers can effectively get assistance from CISA, the US Department of Health and Human Services (HHS), and other government entities. The bill would also require the Government Accountability Office (GAO) to produce a report that evaluates the challenges that providers, health systems, and manufacturers face in accessing federal support when addressing medical device security vulnerabilities. The GAO's report would include guidance on how federal agencies can improve coordination to improve medical device security.

HealthITSecurity reports "Bill Calls on FDA to Regularly Update Medical Device Security Guidelines"