It is made possible by introducing integrated Cybersecurity Services
Philips partners with CyberMDX, a leader in connected medical device security, to provide vendor-neutral solutions to protect connected medical systems and devices
Physician reads radiology images
Physicians collaborate to read radiology images
Bengaluru, NFAPost: Royal Philips, a global leader in health technology, announced the introduction of the Philips Cybersecurity Services for seamlessly integrating and enhancing strategic security solutions for Philips customers.
The Philips Cybersecurity Services comprise an end-to-end suite of technologies and services to safeguard customers’ medical systems, devices and related software solutions regardless of their manufacturer, helping empower digital transformation in healthcare.
Created as a platform for partnership with healthcare customers, the Cybersecurity Services help define and implement strategic and tactical software and device protection. The Cybersecurity Services are designed to be customized and optimized for present and emerging individual customer needs for their healthcare environments.
As requirements evolve, the Cybersecurity Services will provide guidance on how to adapt to provide optimum protection and support. The services will initially be deployed in the US, with expansion to other geographies planned for 2021.
Philips’ integrated Cybersecurity Services are supported by a new partnership with CyberMDX, a leading provider of healthcare cybersecurity capabilities for hospital digital environment mapping and evaluation, medical device risk assessment, security prioritization, threat detection and intelligence, intrusion prevention, and related support. Data and insights collected through CyberMDX form a core foundation for development and implementation of a full cybersecurity plan for individual customers.
Philips Head of Global Services and Solutions Conrad Smits said successfully preventing cyber-threats and future-proofing digital healthcare environments require a systemic, disciplined approach in both design and implementation, as well as strong partnerships.
“We are pleased to partner with CyberMDX, and through our complementary tools and expertise, we will be able to provide an integrated cybersecurity service offering for our customers,” said. Philips Head of Global Services and Solutions Conrad Smits.
CyberMDX Co-founder and CEO Amir Magner said both CyberMDX and Philips strive to make healthcare a safer place by continuously building out more robust cybersecurity solutions.
“Our industry leading multi-vendor Healthcare Security Suite works to protect all connected devices in hospital environments, whether managed or unmanaged, by leveraging a combination of risk assessment, detection, threat intelligence and prevention capabilities,” said CyberMDX Co-founder and CEO Amir Magner.
Commenting on the development, Philips Head of Security Gal Gnainsky the digitisation of healthcare presents both opportunities and threats.
“Connectivity plays a transformational role in healthcare, but potentially exposes patients and organizations to safety and security risks. Assuring the integrity of these devices, systems, and associated data requires a cohesive cybersecurity program based on comprehensive risk assessment and robust implementation,” said Philips Head of Security Gal Gnainsky.
The Philips Cybersecurity Services comprise:
Cybersecurity Consulting – Security experts provide risk and vulnerability assessments of medical systems, regulatory compliance support, and guidance for seamlessly integrating security response and recovery across suppliers.
Cybersecurity Protection and Upgrade Services – Technology and service offerings work to keep systems secure through software upgrades to the latest security standards, medically validated OS patching, and network segmentation. Philips navigates the balance between required security protections, minimizing downtime, as well as maximizing the lifetime usage of systems and devices.
Cybersecurity Detection and Recovery Services – Identifying and monitoring the security posture of medical assets and systems 24/7. When needed, these services trigger response and recovery workflows. The services identify incidents with a focus on a healthcare context to avoid data overload, and then initiates remediation actions enabling operations to resume as soon as possible.
Cybersecurity Access & Audit Services – Access and audit services help maintain control over employee and vendor system access, and allow for streamlined/compliant auditing of procedures and data. This provides essential insights into a hospital’s security profile – indicating strengths and potential vulnerabilities.
Philips’ cybersecurity approach is defined by its end-to-end “Security by Design” principles, infusing security from product design and development, through testing and deployment – followed up with robust policies and procedures for monitoring, effective updates, and incident response management.
Philips has also contributed to the development of national and international cybersecurity standards for medical devices. The Philips Cybersecurity Services aligns with global cybersecurity best practices and internationally recognized standards.
Visit Philips Live at RSNA 2020 for more information on Philips integrated workflow solutions to connect data, technology and people across the diagnostic enterprise, helping to redefine radiology workflow efficiencies.
Philips’ triple duty of care
The COVID-19 pandemic continues to highlight how interconnected the world’s social, economic and environmental challenges are. Philips remains fully focused on delivering against its triple duty of care: meeting critical customer needs, safeguarding the health and safety of its employees, and ensuring business continuity.
As a purpose-driven health technology company, Philips is applying its innovation strength to improve the health and well-being of people. The company is deeply committed to doing business responsibly and sustainably, recently setting out a range of challenging new environmental, social and governance targets.