The AAMI Summer Learning Series is your opportunity to gain insights from leading health technology, regulatory, and sterilization experts in an interactive virtual format. Each custom track connects you with the content most relevant to success in your role. Registration includes live streaming access and recordings of the sessions. Each webinar can earn you from one (1) to four (4) CEU's towards your ACI certification. Learn when—and where—you want this summer at an incredible value!

We also have an HTM Track of the Summer Learning Series!

Learn More

 

Registration Rates

—Includes all 6 sessions in the track!—

MemberNon-Member
$150$210

Register

 

Session 1:

'Hope' Is Not a Strategy for Dealing with Legacy Medical Devices

Monday, June 15, 2:00 p.m to 3:00 p.m ET

Maintaining the cybersecurity posture of legacy medical devices is challenge faced by all healthcare technology management departments. This includes the need for establishing effective collaboration between disparate HTM and IT support staffs and services, the mixed medical and IT infrastructure elements, and the potential implications to patient care and safety—all while minimizing the security exposure of these systems in light of technical, practical, and budget limitations. This session will introduce and review common best practices that mitigate the unique risks legacy systems pose and the steps HTM, IT, manufacturers, and others can take to successfully develop security layers around these particularly vulnerable systems.

Expert Presenters and Panelists:
  • Axel Wirth, MedCrypt
  • Stephen Grimes, Strategic Healthcare Technology Associates, LLC

 

Session 2:

Medical Device Patching: Finding a Way Past the Roadblocks

Monday, June 22, 2:00 p.m to 3:00 p.m ET

Conventional cybersecurity wisdom suggests that one of the simplest ways to mitigate risk is to keep systems updated. Corporate IT environments have well-established procedures for this, as evidenced by general understanding of the phrase "Patch Tuesday." But medical device environments introduce additional layers of complexity, constraints, and requirements that complicate the device patching process. This panel will give a brief presentation about the major gaps that still affect timely medical device patch rollout, followed by a forum for discussion about how both hospitals and manufacturers are approaching and addressing the “patching problem.”

Expert Presenters and Panelists:
  • Kyle Wallace, The MITRE Corporation
  • Jay Radcliffe, Thermofisher Scientific
  • Keith Whitby, Mayo Clinic

 

Session 3:

Introduction to Cybersecurity

Monday, July 6, 2:00 p.m to 3:00 p.m ET

Today, it would be difficult to find medical device technology that does not critically depend on computer software. Network connectivity and wireless communication has transformed the delivery of patient care. The technology often enables patients to lead more normal and healthy lives. However, medical devices that rely on software (e.g., drug infusion pumps, linear accelerators, pacemakers) also inherit the pesky cybersecurity risks endemic to computing. What's special about medical devices and cybersecurity? What's hype and what's real? What can history teach us? How are international standards bodies and regulatory cybersecurity requirements changing the global manufacture of medical devices? This talk will provide a glimpse into the risks, benefits, and regulatory issues for medical device cybersecurity and innovation of trustworthy medical device software.

Expert Presenters and Panelists:
  • Kevin Fu, PhD, University of Michigan

 

Session 4:

Considering a Discovery and Security Platform Solution? Parkland Health shares their Decision Methodology

Monday, July 13, 2:00 p.m to 3:00 p.m ET

As Medical Device/IoT discovery and security platforms become more widely utilized, selecting the ideal vendor for your organization warrants a multi-disciplinary, objective, and strategic evaluation that results in bringing value and efficiency to the entire enterprise. As the experience of early health system adopters can now be referenced, recognized practices, requirements, and outcomes are emerging that may differ depending on your organizations business goals. More than checking feature/function boxes and mapping business drivers to use-cases, a dynamic assessment of the vendor’s vision and how it supports Medical Device/IoT risk and life-cycle management is essential throughout the process. Parkland Health and First Health Advisory's experience will be shared in this discussion.

Expert Presenters and Panelists:
  • Thomas Finn, Medigate
  • Carter Groome, First Health Advisory
  • Travis Kobernick, Parkland Health & Hospital
  • Jack Wagner, First Health Advisory-Cyber Health Solutions

 

Session 5:

Assessing Cybersecurity Risks Before You Buy

Monday, July 20, 2:00 p.m to 3:00 p.m ET

Medical devices and systems are increasingly capable of storing patient data and connecting to healthcare networks. The ability of network-connected medical devices and systems to data presents several benefits that allow for timely and effective care. However, network-connected health technology also poses potential risks for the healthcare facility, such as increased bandwidth competition on the network, the risk of exposure to malware, system integration challenges, data storage requirements, and the possibility of losing sensitive patient data stored on the devices or system. This session will guide participants in assessing and categorizing cybersecurity risks posed by network-connected medical devices prior to procurement. Attendees will gain insights into developing policies specific to the procurement of network-connected medical devices and medical devices that store sensitive information, ensuring the procurement process accounts for established cybersecurity posture requirements, and establishing a risk assessment and acceptance strategy for medical devices.

Expert Presenters and Panelists:
  • Megan Friel, Department of Veterans Affairs
  • Steven Hughes, Department of Veterans Affairs
  • Stephanie Larson, Department of Veterans Affairs
  • Dema Helou, Sigma Health Consulting, LLC

 

Session 6:

Selecting and Implementing a Risk Management Solution for Connected Devices

Tuesday, July 21, 2:00 p.m to 3:00 p.m ET — Rescheduled from June 29

This session will describe a case in which an integrated delivery network, software solution provider, and service provider worked together to implement a strategic medical device security program. The trio collaborated to gain executive buy in at the integrated delivery network, vetted and selected a medical device risk management platform, conducted a medical device cybersecurity program and technical assessment, and deployed the strategy. The presenters will share evaluation methodologies and provide guidance on how to successfully use the risk management platform across different domains in the health system.

Expert Presenters and Panelists:
  • Cory Brennan, Hall Render Advisory Services
  • Priyanka Upendra, Banner Health