Seminar „IT Security of Medical Devices“

Kein Seminartermin
There is currently no known date for this seminar. Please try again at a later date or contact us.

Targets

This two-day compact seminar on IT security of medical devices pursues the learning objectives:

  • Regulatory requirements
    You know the regulatory requirements for IT security and can classify them according to application areas (e.g. EU / FDA / international, industry-specific / non-specific, manufacturer / operator).
  • EU Basic Data Protection Regulation (EU-DSGVO)
    You can put the requirements of the EU General Data Protection Regulation in the context of the requirements for IT security of the products.
  • Basics and terms
    You know the protection goals of IT security in the context of medical devices and can confidently handle terms, e.g. threat, vulnerability, asset.
  • IT Security-Related System & Software Requirements
    You will receive an overview of the specific IT security requirements (software / system requirements) resulting from the application of the relevant standards and laws.
  • Security Analysis
    You can apply methods (e.g. Threat Modeling, Threat Analysis and Risk Assessment) to systematically analyze and minimize IT security risks.
  • Security Testing
    You know important test strategies for IT security, e.g. penetration testing or fuzz tests
  • Development and Post-Market Processes
    You understand how continuous assurance of IT security can be embedded into the development process and post-market surveillance, and what data sources and roles are available for this.

Content

Day 1

TimeTopic focus
09:00Welcome, expectations, introduction
09:20Introduction: status quo, definitions of terms, protection goals
09:50Regulatory requirements for IT security
10:45Break
11:00Derivation of the most important activities from the regulatory requirements
11:45EU-DSGVO and application to IT security of products
12:15Lunch
13:15General requirements for quality and risk management
14:00Planning
14:15Requirements engineering
15:00Break
15:15Architecture, Defense-in-depth, Threat Modeling
17:00Summary, recap, Q&A session
17:15End day 1

Day 2

TimeTopic focus
09:00Greeting and repetition
09:20Other activities in the product life cycle: design, implementation, verification, release, maintenance
10:45Break
11:00Risk management for IT security
12:15Lunch
13:15Post-market activities
14:15Technical documentation for IT security
15:00Break
15:15Integration of IT security activities into your own process landscape
16:00IEC 81001-5-1 and IEC 60601-4-5 and their application
16:30IT security in own company and as operator, EU-DSGVO, ISO 27001
17:00Summary, recap, Q&A session
17:15End of the seminar

Target group

This seminar on IT security for medical devices is aimed in particular at the following persons:

  • (Software) developer and software tester
  • Employees in IT
  • Regulatory Affairs and Quality Manager
  • Risk managers and safety officers
  • Project Manager and Product Manager