.png)
Medical device cybersecurity is a hard problem to solve. Our Services team provides actionable roadmaps to facilitate product development, quality, and security frameworks to meet your pre- and post-market needs. No matter where you are in your process, we enhance your processes and agile methodologies to get to market, while optimizing your resources.
Need cybersecurity strategy helpOptimize your path to FDA cybersecurity readiness. We partner with you to ensure your devices can achieve the highest level of regulatory review, as well as develop cybersecurity programs that scale with you. Get your secure medical devices to market on or even ahead of schedule, with peace of mind.
Get immediate guidance to navigate your response process effectively.
Ensure your software ecosystem is protected and incorporate continuous security improvements into your design and engineering processes. We do a deep-dive investigation into your architecture, design, requirements, and implementation to create threat models that review current state, refine trust boundaries, identify requirements, and propose remediations, ensuring that your hardware, firmware, software, network communication, and data handling components to ensure you are protected now and in the future.
We assess your PKI and certificate management practices, perform gap analysis with industry best practices and regulatory guidance, and develop realistic and actionable mitigation strategies for medical devices.
.svg)
All around the world, From startups to enterprise-level top device manufacturers are turning to Medcrypt we work with companies of all sizes to help secure their products.
“In the course of filing for a 510(k) clearance we needed to establish a threat model that meets regulators' expectations. Medcrypt not only helped us with their deep expertise but even more with the excellent understanding of our company specific needs. If you are looking for tailor-made solutions, provided by people who really care, Medcrypt are the folks to turn to!”
"As a startup medical device company with a new product under development, including a cloud-based component, we needed to improve cybersecurity in order to protect our business and get IVDR CE-mark and FDA 510(k) clearance. MedCrypt helped us develop our threat model, which guided us to a more secure design and improvements to our solution architecture. MedCrypt has also been deeply involved in creating our cybersecurity risks and meet future regulatory expectations. We are extremely satisfied with the support we received from MedCrypt and recommend MedCrypt if you are looking for a partner to help with your medical device cybersecurity program and design."
“Medcrypt’s support increased our confidence in our cryptography architecture, helped us better document its strengths, and provided feedback on gaps in other areas. From our work with Medcrypt, we expect a faster and smoother regulatory review, as well as faster development of our roadmap.”
We are FDA and medical device experts helping healthcare technology companies build products that are secure by design.
.png)
.png)
.png)
.png)
Naomi is a regulatory, compliance, and standards expert. She employs gap analyses, proposes mitigation strategies, and optimizes cybersecurity frameworks to address risk and uncertainty for device commercialization and to meet regulatory requirements and guidelines. Naomi has 20+ years of systems engineering experience.
Prior to Medcrypt, she was a premarket reviewer and consumer safety officer in CDRH for 6+ years, focusing on software, interoperability, and cybersecurity for connected diabetes devices. Her industry leadership and strategic direction include crafting standards and recommended practices for wireless diabetes device security, managing postmarket triage for cybersecurity vulnerability disclosure. She holds an MS in Electrical and Computer Engineering from Carnegie Mellon University and is a Certified Quality Auditor.
Seth has 10 years of medical device experience and provides strategic direction for cybersecurity products and services for the regulated device market.
Prior to Medcrypt, he spent 8 years at the FDA, architecting technology policy and laws that impact software-enabled medical devices, including the FDA’s medical device cybersecurity policies. His industry leadership and strategic direction extends to several high-profile industry frameworks including the Joint Security Plan (HSCC), MITRE’s Rubric for Applying CVSS to Medical Devices, and MDIC’s Playbook for Threat Modeling Medical Devices. He has authored several medical device cybersecurity papers and won several information security awards. He holds a PhD in Chemistry from Indiana University.
Clayton McNeil, our VP of Engineering, has spent his career developing products in a wide range of fields including robotics, fiber optics, virtual reality and medical devices. His development role has primarily been focused on embedded devices and their security. At MedCrypt, he has reviewed the architecture of over 40 systems, advising customers on cryptographic infrastructure. He holds a BS in Computer Engineering from Drexel University and an MBA from West Chester University.
AJ specializes in enterprise digital transformation, program development, continuous process improvement, and cybersecurity. He assesses organizational security and implements actionable transformation plans and services to achieve executive targets.
Prior to Medcrypt, he spent five years doing management consulting, providing comprehensive business transformation services to Fortune 500 clients in various industries, including Pharmaceuticals, Defense, Consumer Packaged Goods, and Medical Devices. He has a BS in Economics from Georgetown University, where he captained the 4x national champion Georgetown Sailing Team.
.svg)
Medcrypt’s own FDA expert, Naomi Schwartz, discusses what the new policy means for MDMs.
Watch video.png)
.svg)
Get your secure medical devices to market on or even ahead of schedule, with peace of mind.
.svg)
.png)