Medical Device Security: Should I worry about my pacemaker being hacked?

On this episode of the IoT: The Internet of Threats podcast, Health-ISAC’s Errol Weiss (Chief Security Officer) and Phil Englert (Director of Medical Device Security) join podcast host Eric Greenwald to discuss the rising stakes of medical device cybersecurity, the growing role of government in regulating cybersecurity controls in healthcare, and how Health-ISAC fits into the picture. 

Interview with Errol Weiss and Phil Englert: 

Prior to his role as Chief Security Officer of Health-ISAC, Errol served in several SVP-level positions at Bank of America, focusing on cybercrime, fraud prevention, business process cyber assessments, and threat analytics and information sharing. Earlier in his career, he held key positions at Citigroup and SAIC. Errol also served on the Board of the Financial Services ISAC during the 2010s. 

Before joining Health-ISAC as Director of Medical Device Security, Phil served as Chief Product Officer at MedSec and was responsible for product management, new business development, and process improvement. Prior to MedSec, Phil served in a variety of roles at Deloitte, Novasano, MDISS (Medical Device Innovation Security and Safety), and Catholic Health Initiatives. 

Health-ISAC (also referred to as H-ISAC) is a global, non-profit organization that offers healthcare security stakeholders actionable data in a trusted community. 

In this interview, Eric, Errol, and Phil discuss:

• What is an ISAC and what does the H-ISAC do? 

• The government’s increased appetite for cybersecurity regulation (with a focus on medical device security) 

• How to protect against attacks with tens of thousands of different medical devices made by a wide array of different manufacturers and that do different things

• The importance of having visibility into the components that make up those thousands of medical devices

• Whether the SBOM (Software Bill of Materials) is ready to be a key control in the healthcare cybersecurity ecosystem 

Find Errol and Phil on LinkedIn

Errol Weiss: https://linkedin.com/in/errolweiss/

Phil Englert: https://www.linkedin.com/in/phil-englert-2642724

Learn more about Health-ISAC by visiting https://h-isac.org/.

Thank you for listening to this episode of the IoT: The Internet of Threats podcast, powered by Finite State — the leading supply chain cyber-security solution provider for connected devices and embedded systems.

If you enjoyed this episode, click subscribe to stay connected and leave a review to get the word out about the podcast.

To learn more about building a robust product security program, protecting your connected devices, and complying with emerging regulations and technical standards, visit https://finitestate.io/.