Cloud 101CircleEventsBlog
Join AT&T's experts & CSA's Troy Leach on April 4 to boost your cyber resilience in 2024!

Download Publication

OWASP Secure Medical Devices Deployment Standard
OWASP Secure Medical Devices Deployment Standard

OWASP Secure Medical Devices Deployment Standard

Release Date: 08/07/2018

Many medical devices were engineered with patient safety as the sole functions of the device and traditionally little attention was paid to the security of these devices. With the explosion of botnets and other malware that now target IoT devices, the need for security-minded deployments of medical devices is now more essential than ever. This guide is intended to serve as a comprehensive guide to the secure deployment of medical devices within a healthcare facility.

Related Research | Working Group

Key Takeaways:
  • Purchasing controls
  • Perimeter defenses
  • Network security controls
  • Device security controls
  • Interface and central station security
  • Security testing
  • Incident response
Download this Resource

Prefer to access this resource without an account? Download it now.

Bookmark
Share
Related resources
Defining the Zero Trust Protect Surface
Defining the Zero Trust Protect Surface
The Six Pillars of DevSecOps - Collaboration and Integration
The Six Pillars of DevSecOps - Collaboration an...
The State of Security Remediation 2024
The State of Security Remediation 2024
Beyond the Black Box: How XAI is Building Confidence
Beyond the Black Box: How XAI is Building Confidence
Published: 03/28/2024
How to Secure Business-Critical Applications
How to Secure Business-Critical Applications
Published: 03/28/2024
For Game-Changing Cloud Workload Protection, Focus on Quality Over Quantity
For Game-Changing Cloud Workload Protection, Focus on Quality Over ...
Published: 03/27/2024
Architecture Drift: What It Is and How It Leads to Breaches
Architecture Drift: What It Is and How It Leads to Breaches
Published: 03/22/2024

Acknowledgements

Srinivas Tatipamula
Srinivas Tatipamula
Principal Security Advisor, Fairfax

Srinivas Tatipamula

Principal Security Advisor, Fairfax

C-CISO|CISSP|CISA|AWS CSS|AWS CSA|CDPSE|CISM|CGEIT|CRISC|ISO 27000LA|CCSK|ITIL-F|PMP|Bachelor of Economics (Hons)|Bachelor of Law| MS in Digital Forensics

Overall 30 plus years in IT and over 18 years in Cyber Security

Publications:

1. Cloud Security Alliance Internet of Things (IoT) Working Group IoT Security Controls Guide Version Published March 2019

2. CSA IoT Controls Matrix March 2019

3. ...

Read more

Michael Roza
Michael Roza
Head of Risk, Audit, Control and Compliance

Michael Roza

Head of Risk, Audit, Control and Compliance

Since 2012 Michael has contributed to over 100 CSA projects completed by CSA's Internet of Things, Zero Trust/Software-Defined Perimeter, Top Threats, Cloud Control Matrix, Containers/Microservices, DevSecOps, and other working groups. He has also served as co-chair of CSA's Enterprise Architecture, Top Threats, and Security-as-a-Service working groups while also serving as the Standards Liaison Officer for IoT, ICS, EA, SECaaS, and Cloud K...

Read more

Hillary Baron
Hillary Baron
Senior Technical Director - Research, CSA

Hillary Baron

Senior Technical Director - Research, CSA

This person does not have a biography listed with CSA.

​Aaron Guzman
​Aaron Guzman

​Aaron Guzman

Aaron is a passionate information security professional specializing in IoT, embedded, and automotive security. He is co-author of the “IoT Penetration Testing Cookbook” and a technical editor for the "Practical Internet of Things Security” Packt Publishing books. Aaron is co-chair of CSA’s IoT working group as well as a leader for OWASP’s IoT and Embedded Application Security projects; providing practical guidance to address the most commo...

Read more

Ashish Mehta
Ashish Mehta
Cybersecurity - Sr. Risk Manager & Security Architect

Ashish Mehta

Cybersecurity - Sr. Risk Manager & Security Architect

Ashish Mehta has extensive experience in cybersecurity, blockchain, web development, IT management, financial markets, and the energy industry.

He currently serves as Co-Chair of the Blockchain Working Group and is a part of the Internet of Things (IoT) and Quantum-Safe Security Leadership Teams at the Cloud Security Alliance. In that capacity, he is responsible for pushing their multiple research efforts as well as coordinating with ...

Read more

Christopher Frenz
Christopher Frenz

Christopher Frenz

Christopher Frenz is the AVP of IT Security for Mount Sinai South Nassau. Christopher is widely regarded as being one of the first healthcare security leaders to embrace a zero-trust model for network security and for taking an evidence-based approach to solving security challenges. Christopher has also played a role in pushing for the adoption of improved security standards within healthcare, led the development of the OWASP ...

Read more

K S Abhiraj Headshot Missing
K S Abhiraj

K S Abhiraj

This person does not have a biography listed with CSA.

Christian Damef Headshot Missing
Christian Damef

Christian Damef

This person does not have a biography listed with CSA.

Siren Hofvander Headshot Missing
Siren Hofvander

Siren Hofvander

This person does not have a biography listed with CSA.

Brian Moussalli Headshot Missing
Brian Moussalli

Brian Moussalli

This person does not have a biography listed with CSA.

Igor Amorim Silva Headshot Missing
Igor Amorim Silva

Igor Amorim Silva

This person does not have a biography listed with CSA.

Are you a research volunteer? Request to have your profile displayed on the website here.

Interested in helping develop research with CSA?

Related Certificates & Training