About the Conference

“Legacy systems connected to a hospital’s network are a threat vector that cyber actors target to establish a presence on a network. Once a cyber threat actor establishes a presence on the device or system, they can launch additional attacks against a hospital’s network, exploiting vulnerabilities in critical systems.” U.S Dept of Homeland Security, May 23, 2018

Cyber intrusions through connected devices, operating systems, or software applications pose risks to patient safety and data privacy. They can disrupt operations and lead to substantial financial losses. Hospital purchasing departments may ignore cybersecurity issues at the front end, and devices often remain in use well beyond the manufacturer’s end of liability and end of support.  Legacy systems are particularly attractive targets for hackers because of their vulnerability.  Compensating controls may prolong a device’s secure lifespan, but what role can, should, or do manufacturers play in post-end-of-life support? What help is available for smaller hospitals with limited budgets and lacking adequate internal technical expertise?

This highly interactive program is intended to help manufacturers and hospitals – independently and in collaboration – better understand steps they can take to improve medical device cybersecurity throughout the product life cycle. 



  • Rick Books, Director of Systems, Software and Electrical Engineering, Batelle
  • Seth Carmody, Cybersecurity Project Manager, Office of the Center Director, CDRH
  • Christina Dar, Sr. Science Health Advisory, CDRH
  • Stephanie Domas, VP of Research, MedSec
  • Sara Dyson, Esq., Assistant VP, Risk Management MedMarc
  • Laura Elan, Engineering Manager, UL LLC
  • Anura Fernando, Principal Engineer, Medical Systems Interoperability & Security, Underwriters Laboratories
  • Julian Goldman, MD, Founder and Director, PnP Medical Device Interoperability & Cybersecurity Program, Partners Healthcare/Massachusetts General Hospital
  • Michelle Jump, Director, Regulatory Affairs Cybersecurity, Carestream
  • Charles Kim, President & CEO, 121nexus
  • Robert Mai, Sr. Manager, Cyber Risk Services, Deloitte & Touche
  • Kevin McDonald, Director of Clinical Information Security, Mayo Clinic
  • Colin Morgan, Director, R&D & Product Security, Johnson & Johnson
  • Scott T. Nichols, Director, Global Product Privacy & Cybersecurity - R&D, Beckman
  • Paul Otto, Sr. Associatte, Hogan Lovells
  • Stephanie Philbin, Counsel, Goodwin Procter
  • Shane Ryan, Executive Vice President, BSI Cybersecurity Resilience Group
  • Andrew Sargent, Director, Product Security, Phillips Healthcare
  • Suzanne Schwartz, MD, Associate Director for Science and Strategic Partnerships, CDRH, FDA
  • Joseph Sener, VP Quality, Device Engineering & Advocacy, ICU Medical
  • Scott Shindledecker, Product Security Officer, Diagnostics, BD Life Sciences
  • Kevin Stoffeell, Cybersecurity Architect, Batelle
  • Robert Suarez, Director, Product Security, BD
  • Daniel Sutherland, Associate General Counsel, US Department of Homeland Security
  • Courtney Young, Esq., Senior Attorney, Loss Control, Medmarc Insurance Group

CEU Information

Attendees can earn CEUs. 1 hour of the conference = 1 CEU. MedTech Intelligence will provide you a Certificate of Attendance with the amount of CEU's earned about three weeks after the conference.

MTI's conference CEUs can be applied to your Regulatory Affairs Certification.


  • When

  • Tuesday, June 4, 2019 - Wednesday, June 5, 2019
    8:00 AM - 4:00 PM

  • Where

  • Boston, MA 02210

Outlook Outlook
iCal iCal
Google Google
Yahoo! Yahoo!