Free

Event Information

Share this event

Date and Time

Location

Location

Hilton Dublin

Charlemont Place

Dublin

Ireland

View Map

Event description

Description

After a calm holidays, we have started the year in total Meltdown! This next OWASP Dublin meeting is jointly organised with ISACA and focuses on Healthcare cybersecurity.

In 2017, we saw numerous organisations impacted by cybersecrutity incidents, with ransomware and data breaches a constant theme throughout the year, with healthcare organisations globally severely impacted.

The nature of healthcare, requires that organisations within this sector keep highly sensitive patient data on file. Doctors and clinicians must have access to this information to make informed decisions about patients, and the ability to easily share this information within a healthcare network, has resulted in significant advancements in the way patients are treated. These advancements have resulted in a far more efficient experience for patients. However, storing and processing personal information poses a severe risk. 2018 will bring an increased focus to healthcare ransomware prevention and careful monitoring of medical device security measures.

Session 1: Cyber Incident detection for EMR Systems

An Electronic Medical Record (EMR) is worth 10-20 times the value of credit card information online. Medical records often contain a persons most sensitive information such as their diagnosis or treatment details. In addition to EMR theft for use in identity fraud, a compromised EMR System could result in a patient receiving an incorrect medical dosage, with serious, even deadly, consequences.

Currently, over 100 hospitals are now live worldwide using the 'Evolve' EMR platform, storing 33 million patient records. Two prototypes have been built to detect a breach in confidentiality (using Machine Learning) or a potential denial of service attack (using Time Series Anomaly Detection). The prototypes are specifically designed to detect malicious trusted users, or rogue trusted systems connected to the EMR.

This presentation reflects on existing EMR security and detection mechanisms, before delving into how the prototypes were constructed and what the learnings are for anyone wishing to use Machine Learning or Time Series Anomaly detection within their own applications.

Davey McGlade, Principal Architect & Cybersecurity Lead, Kainos Software

Davey is a Principal Architect and Cyber Security Lead with Kainos Software, where he has worked for the last 9 years on projects ranging from a digital storage platform for the UK Home Office, a replacement for the nationwide MOT service and the security of the UK Register to Vote site. Davey recently finished a MSc in Applied Cyber Security with Queen's University Belfast (CSIT).

Session 2: Cybersecurity Risk Management Expectations for Medical Device Manufacturers

The medical device industry has seen many changes over the last few years. Manufacturers are developing smarter devices that are connect to networks and other medical devices. Such innovations open devices to new cybersecurity attack vectors. In response to this, FDA have published pre-market and post-market cybersecurity guidelines setting out requirements for medical device manufacturers. This talk aims to:

This discussion looks at:

  • Background and findings - What's happened in the industry to date;

  • FDA's pre-market / post-market cybersecurity expectations;

  • What resources are available to manufacturers;

  • What's expected in the future.

Anita, CEO, Nova Leah

Nova Leah is first provider of intelligent software solutions for addressing cybersecurity risk management compliance requirements for connected medical devices. She is an internationally recognised expert in the field of medical device cybersecurity and is an active member of a number of International Standards Communities. Her PhD research focused developing an assurance framework to assist medical device manufacturers demonstrate confidence in the security of connect devices. Anita was the international project leader for two technical reports (IEC/TR 80001-2-8 and IEC/TR 80001-2-9) and is now the security lead for a for the revision of another. She represents NSAI as Ireland’s medical device security expert at International Standards meetings.


As always thanks to our sponsors Morgan McKinley for their ongoing support.

Share with friends

Date and Time

Location

Hilton Dublin

Charlemont Place

Dublin

Ireland

View Map

Save This Event

Event Saved