10.05.15
London, United Kingdom-based Intertek Group plc released a new service for mobile health applications at AdvaMed 2015 held in San Diego, Calif. The new the 6-Point Security Check, which assesses the cybersecurity of browser-based applications, mobile or embedded applications with a cloud back end and cloud architecture, is designed to identify deficiencies and vulnerabilities and to develop recommendations for correcting issues discovered during the assessment.
Data security and patient privacy are top priorities for the medical device industry and many manufacturers have questions about testing requirements and regulations in the U.S. market, the company reports. A panel discussion on Oct. 5 at AdvaMed’s 2015 meeting addressed this very issue. Intertek’s 6-Point Security Check is meant to evaluate new software, applications and connected devices to fulfill U.S. Food and Drug Administration (FDA) requirements for demonstrated cybersecurity risk management measures.
“A cybersecurity assessment is one of the most important tools a medical device manufacturer can employ to ensure best practices are being used with connected medical devices and mobile health apps,” said Delmar Howard, program manager at Intertek. “Working with methodologies and processes during the development period can help avoid costly vulnerabilities by exposing and mitigating potential risks early in the process, as opposed to after product launch.”
The 6-Point Security check consists of: scans according to Open Web Application Security Project recommendations; review of web services configuration; review of data security logs; identification of potential Structured Query Language injection points; validation of security controls; and recommendations for risk mitigation.
The new offering was developed in conjunction with an Intertek white paper identifying strategies for stronger mobile health application security to simplify FDA recommendations. Key areas highlighted in the white paper include network scanning, password protection, malware detection and privacy protection.
“Intertek’s strategy has always been to guide our customers through a complex regulatory environment, enabling them to integrate the latest technology into their products while avoiding delays,” said Stephanie Gruhn, medical global business lead at Intertek. “By partnering with them throughout the product development process with offerings like the 6-Point Security Check, we can help them navigate the regulatory process more smoothly, bringing products to the global market faster and more easily.”
Intertek is an inspection, product testing and certification company.
Data security and patient privacy are top priorities for the medical device industry and many manufacturers have questions about testing requirements and regulations in the U.S. market, the company reports. A panel discussion on Oct. 5 at AdvaMed’s 2015 meeting addressed this very issue. Intertek’s 6-Point Security Check is meant to evaluate new software, applications and connected devices to fulfill U.S. Food and Drug Administration (FDA) requirements for demonstrated cybersecurity risk management measures.
“A cybersecurity assessment is one of the most important tools a medical device manufacturer can employ to ensure best practices are being used with connected medical devices and mobile health apps,” said Delmar Howard, program manager at Intertek. “Working with methodologies and processes during the development period can help avoid costly vulnerabilities by exposing and mitigating potential risks early in the process, as opposed to after product launch.”
The 6-Point Security check consists of: scans according to Open Web Application Security Project recommendations; review of web services configuration; review of data security logs; identification of potential Structured Query Language injection points; validation of security controls; and recommendations for risk mitigation.
The new offering was developed in conjunction with an Intertek white paper identifying strategies for stronger mobile health application security to simplify FDA recommendations. Key areas highlighted in the white paper include network scanning, password protection, malware detection and privacy protection.
“Intertek’s strategy has always been to guide our customers through a complex regulatory environment, enabling them to integrate the latest technology into their products while avoiding delays,” said Stephanie Gruhn, medical global business lead at Intertek. “By partnering with them throughout the product development process with offerings like the 6-Point Security Check, we can help them navigate the regulatory process more smoothly, bringing products to the global market faster and more easily.”
Intertek is an inspection, product testing and certification company.