Medcrypt, Inc. announces its partnership with NetRise to address critical cybersecurity challenges in the healthcare industry. This partnership will provide MDMs with a Software Bill of Materials (SBOM) lifecycle management solution that will empower device makers to proactively identify and address potential security risks and ensure the safety and integrity of their medical devices.
In 2021, the White House released an executive order on the growing need for improved cybersecurity, which included the use of (SBOMs “as a formal record containing the details and supply chain relationships of various components used in building software” for each product. The two primary use cases of SBOMs are to identify vulnerabilities from component information within the SBOM and to monitor license usage, especially of open-source software. The value SBOMs provide is two-fold: Supporting R&D teams in the premarket phase as well as supporting postmarket management and vigilance, thus informing cybersecurity activities across teams, including research and development, product quality, and legal teams. For medical device manufacturers, the U.S. Food and Drug Administration (FDA) is mandating that all software-based medical devices must create and maintain an SBOM, and will start refusing submissions that fail to include this information on October 1, 2023.
The collaboration between Medcrypt and NetRise aims to revolutionize medical device security by combining Medcrypt’s expertise in vulnerability identification and management with NetRise’s unparalleled capabilities in generating SBOMs for embedded devices and firmware. This partnership provides medical device manufacturers with a comprehensive solution to safeguard their devices against potential cyber risks throughout their entire lifecycle.
“As with everything in tech, the vulnerability management space is constantly evolving. We chose to partner with NetRise because our technologies have a clear synergy. This partnership allows us to build a medical device-specific workflow that aligns seamlessly with the requirements of key stakeholders in the healthcare industry,” said Mike Kijewski, CEO of Medcrypt. “With NetRise’s offerings integrated into our vulnerability management solution, Helm, we can support a broader range of use cases, ensuring our customers have the most robust and compliant cybersecurity measures in place.”
Medcrypt will integrate NetRise’s SBOM generation capabilities into Helm, extending the support for SBOMs throughout the entire lifecycle of medical devices. NetRise will offer medical device manufacturers the ability to generate, ingest, enrich, manage, and monitor SBOMs, providing critical visibility into the underlying vulnerabilities of their embedded devices and firmware.
“This collaboration brings together NetRise’s industry-leading SBOM generation capabilities with Medcrypt’s extensive experience in the medical device manufacturing space,” said Thomas Pace, CEO of NetRise. “This combination offers the best SBOM lifecycle management solution in the industry, empowering manufacturers to identify and mitigate security vulnerabilities effectively.”