On March 29, 2023, and March 30, 2023, the U.S. Food & Drug Administration (“FDA”) issued a series of FAQs[1] and a guidance document[2] clarifying the agency’s intended implementation of the Consolidated Appropriations Act of 2023 (the “Omnibus”), which amended Section 524B of the Food, Drug & Cosmetics Act (the “FD&C Act”) to require the demonstration of cybersecurity safeguards in pre-market submissions for certain medical devices.[3] Continue Reading FDA To Require Demonstration of Cybersecurity Safeguards for Pre-Market Submissions of Certain Medical Devices

At the beginning of February, the US Food and Drug Administration (FDA) Center for Devices and Radiological Health (CDRH) appointed Professor Kevin Fu as the first ever Acting Director of Medical Device Cybersecurity. Fu’s role also includes a one-year appointment with the Digital Health Center of Excellence (DHCoE), a division launched in September 2020 within CDRH.  Many see this new appointment as an indication that the Agency will make cybersecurity a priority in 2021.
Continue Reading FDA Appointment Signals Increased Attention on Medical Device Cybersecurity