TRENDING:

Endpoint Security , Governance & Risk Management , Next-Generation Technologies & Secure Development

Jennings Aske on Getting Serious About Medical Device Security

New York-Presbyterian CISO Says It's Time for Manufacturers, Regulators to Step Up Joan Goodchild (Security_Joan) • October 31, 2017     10 Minutes   
Jennings Aske on Getting Serious About Medical Device Security
Jennings Aske, CISO, New York-Presbyterian

While medical devices have enabled incredible advances in patient care, their cybersecurity posture hasn't improved much in the past decade. This, despite repeated warnings from many healthcare security experts.

Jennings Aske, CISO at New York-Presbyterian, an academic medical center, says the healthcare sector is still struggling to figure out device security and contends that federal regulations have not been helpful in making it a priority.

"There are many conversations happening now," Aske says. "And I'm starting to feel like there is a shift ... Manufacturers, and the folks responsible for security, are attending these meetings and saying the right things. But it's going to take some time to get things baked into products. I'm not convinced fully that manufacturers are there yet, but I'm starting to see the cracks in the wall."

In this interview, Aske, who will be speaking at Information Security Media Group's upcoming Healthcare Security Summit, slated for November 14-15 in New York, also discusses:

  • Why Food and Drug Administration oversight into medical device security isn't stringent enough;
  • The factors that have contributed to slow industry response to device security;
  • What healthcare teams should prioritize now in their medical device security strategies.

Before becoming CISO at New York-Presbyterian, Aske, who is an attorney, was vice president of information security and CSO at Nuance Communications as well as chief information security and privacy officer at Partners HealthCare.

Previous
WannaCry: A Fresh Perspective on the Ransomware Attack
Next
Six Months to Go: Getting Ready for GDPR



Around the Network

How 'Security by Default' Boosts Health Sector Cybersecurity
How 'Security by Default' Boosts Health Sector Cybersecurity
Protecting Medical Devices Against Future Cyberthreats
Protecting Medical Devices Against Future Cyberthreats
Evolving Threats Facing Robotic and Other Medical Gear
Evolving Threats Facing Robotic and Other Medical Gear
Is It Generative AI's Fault, or Do We Blame Human Beings?
Is It Generative AI's Fault, or Do We Blame Human Beings?
How the NIST CSF 2.0 Can Help Healthcare Sector Firms
How the NIST CSF 2.0 Can Help Healthcare Sector Firms
Medical Device Cyberthreat Modeling: Top Considerations
Medical Device Cyberthreat Modeling: Top Considerations
Identity Security and How to Reduce Risk During M&A
Identity Security and How to Reduce Risk During M&A
Properly Vetting AI Before It's Deployed in Healthcare
Properly Vetting AI Before It's Deployed in Healthcare
Safeguarding Critical OT and IoT Gear Used in Healthcare
Safeguarding Critical OT and IoT Gear Used in Healthcare
Transforming a Cyber Program in the Aftermath of an Attack
Transforming a Cyber Program in the Aftermath of an Attack

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing careersinfosecurity.com, you agree to our use of cookies.