Stay secure with CISA's guidance on design and product safety.

Article Summary

TLDR:

Key points:

Cybersecurity and Infrastructure Security Agency and FBI released guidance on secure software products
Health care organizations should require secure by design software from developers

Article Summary:

The Cybersecurity and Infrastructure Security Agency (CISA) and FBI recently issued guidance on secure by design software products, emphasizing the importance of assessing product security maturity and ensuring manufacturers follow secure by design principles. John Riggi, AHA national advisor for cybersecurity and risk, highlighted the need for consumers, including health care organizations, to drive market forces for better securely designed software. It is recommended that health care organizations demand that software developers meet cybersecurity specifications outlined in the guide during the procurement phase. Riggi also emphasized the importance of software developers taking primary responsibility for software security, rather than end users, promoting a secure by design and demand approach.

For more information on cyber and risk issues, individuals can contact Riggi at jriggi@aha.org. Additional cyber and risk resources and threat intelligence are available at aha.org/cybersecurity.

Post Views: 42

Latest from Blog

Watch out for serverless architecture’s cybersecurity risks for businesses

Serverless Architecture and Cybersecurity Risks TLDR: Move towards serverless architecture presents new security challenges Threat actors are exploring vulnerabilities in serverless environments Today’s cybersecurity landscape is rapidly evolving with the adoption of