A draft IT security guide for medical devices developed by the National Institute of Standards and Technology should undergo an exercise to see how it aligns with existing health-sector cybersecurity regulations, a NIST official said Tuesday.
Gavin O’Brien, a computer scientist at NIST’s National Cybersecurity Center for Excellence, said the guide was created in collaboration with the Department of Health and Human Services. But the guide has not been tested within HHS’ auditing process to see how effective it is at improving compliance with cybersecurity and privacy rules, he said. O'Brien participated in a Tuesday webcast on the new draft guidance, which was released in July.
Read more at: Inside Cybersecurity