Industry cyber guidelines mirror FDA proposed medical device rules for software vulnerabilities

The healthcare industry's recently released guidelines for securing data and systems includes a recommendation to require vendors to provide a “bill of materials” similar to language in a pending proposal by the Food and Drug Administration for reducing software vulnerabilities in medical devices.

The industry guidelines issued by the Healthcare and Public Health Sector Coordinating Councils late last month offer 10 steps organizations should take voluntarily to address the greatest cybersecurity threats while meeting other long-standing regulatory requirements, so inclusion...