News and Events

2017 Mobile Health Forum

April 20, 2017

Gavin O'Brien will be a keynote speaker at ACT-IAC's 2017 Mobile Health Forum at the Renaissance Washington in Washington, DC. This forum will explore the role over privacy and security in shaping the future of mobile health technology

HIMSS Annual Conference & Exhibition

February 19, 2017

The NCCoE will be participating with NIST at the 2017 Healthcare Information and Management Systems Society (HIMSS) Annual Conference & Exhibition at the Orange County Convention Center in Orlando, Fl.  for additional information on presentations, demonstration times, and exhibition location. 

NIST’s NCCoE Showcases Projects at RSA, HIMSS Conferences

February 09, 2017

The National Cybersecurity Center of Excellence (NCCoE), a part of the National Institute for Standards and Technology (NIST), will demonstrate its current projects in San Francisco Feb. 13-17 at the RSA Conference and Orlando Feb 19-23 at the Healthcare Information and Management Systems Society Annual Conference & Exhibition (HIMSS17).

Individuals and organizations interested in learning more about the NCCoE’s work and how they can participate are encouraged to visit the booth and attend the presentations and demonstrations listed below.

RSA Conference: February 13-17, 2017

Clearwater Achieves #11 Rank in Top 500 Global Cybersecurity Companies to Watch in 2017

November 29, 2016

The announcement comes at an opportune time for Clearwater as the company is experiencing record growth, a strong demand for its Cyber Risk Services (CRS) solution, a new managed solution to help hospital CIOs and CISOs safeguard their data, systems, and reputation and the company’s selection by the National Institute of Standards and Technology’s (NIST) National Cybersecurity Center of Excellence (NCCoE) ...

NCCoE Speaker Series Discusses Cybersecurity in the Health Community

November 10, 2016

On Wednesday November 9, 2016, the National Cybersecurity Center of Excellence (NCCoE) hosted “Cybersecurity in the Health Community,” part of the NCCoE Speaker Series. The event brought together a variety of cybersecurity professionals to the NCCoE campus to further the discussion on cybersecurity in the healthcare environment.

NCCoE Speaker Series: Cybersecurity in the Health Community

November 09, 2016

Speaker: Suzanne Schwartz, MD, MBA is the Associate Director for Science & Strategic Partnerships at FDA’s Center for Devices & Radiological Health (CDRH). Her portfolio includes medical device cybersecurity and efforts span incident response, increasing awareness, outreach, partnering, policy and coalition-building. Suzanne chairs CDRH Cybersecurity Working Group. She also co-chairs the Government Coordinating Council for Healthcare & Public Health. Suzanne earned an MD from Albert Einstein College of Medicine, trained in General Surgery & Burn Trauma at the New York Presbyterian Hospital - Weill Cornell Medical Center; an executive MBA from NYU Stern School of Business, and completed the National Preparedness Leadership Initiative – Harvard School of Public Health...

AEHIX 16 Fall Forum

November 03, 2016

NCCoE Computer Scientist Gavin O'Brien will participate in the "Information Security: It's Everyone's Problem" session from 10:30m-11:30am at the AEHIX 16 Fall Forum in Phoenix, Arizona. This session explores the current threat landscape and identifies best practices for protecting the organization and information vital to patient care and business operations. This fall forum aims to bring together thought leaders from across health IA, IT, and IS specialties to network and share ideas on how IT can help bend the cost curve.

Is the Human Body the Cure for Mobile Data Security Concerns?

October 19, 2016

Both mobile device security and medical device security are increasingly popular topics in the healthcare industry. While there has not yet been a case of a hacked medical device affecting a patient, the concern for such a scenario is growing. The National Cybersecurity Center of Excellence (NCCoE) is investigating how best to improve wireless medical infusion pump security.

Safeguarding Health Information: Building Assurance through HIPAA Security

October 18, 2016

NIST and the Department of Health and Human Services' Office for Civil Rights will co-host the 9th annual Safeguarding Health Information: Building Assurance through HIPAA Security Conference on October 19-20, 2016 at the Capital Hilton, Washington, D.C. NCCoE computer scientist Gavin O'Brien will host a panel on "Addressing Healthcare Cybersecurity Challenges through Standards-based Solutions" on October 19 from 1:15pm-2:15pm.

AFCEA Bethesda Health IT Day

October 11, 2016

NCCoE Computer Scientist Gavin O'Brien will join the "Cybersecurity: Out Think Healthcare Threat" panel discussion at the AFCEA Health IT Day at the Bethesda North Marriott Conference Center on Wednesday, October 12 from 10:30am-11:30am. This moderated panel of federal CISOs and privacy experts will share their perspective on how cognitive solutions may impact predictive threats and other cybersecurity topics of interest. 

NIST Selects Clearwater Compliance for Research Project to Bolster Cybersecurity of Wireless IV Medical Infusion Pumps

September 07, 2016

Clearwater Compliance, a leading healthcare cybersecurity company, will collaborate with the National Institute of Standards and Technology’s (NIST) National Cybersecurity Center of Excellence (NCCoE) as part of a wide-ranging, first-of-its-kind risk assessment project focusing on wireless IV medical infusion pumps. This research project will investigate how to improve wireless IV medical infusion pumps’ security, with an end goal of helping companies and organizations increase their cyber risk assessment and management capability. The end result of this collective collaboration is a reference design and an implementation guide on how to protect wireless IV medical infusion pumps from unintended errors or unauthorized access, including malicious acts.

Medical Device Cybersecurity Key Focus in NIST Partnership

September 07, 2016

A new risk assessment project designed for monitoring wireless IV medical infusion pumps hopes to further strengthen medical device cybersecurity across the healthcare industry. Gavin O’Brien, senior cybersecurity engineer with NCCoE discussed the partnership with HealthITSecurity.com and what it means for medical device cybersecurity.

Mid-Atlantic Healthcare IT Security Leaders' Summit

August 23, 2016

NCCoE Computer Scientist Gavin O’Brien will speak at the Mid-Atlantic Healthcare IT Security Leaders Summit on “Securing the Healthcare Sector at the National Cybersecurity Center of Excellence” on August 24 at 2pm. Hosted by infoLock Technologies, the summit brings together security leaders and executives from healthcare systems in the eastern United States for facilitated discussion and idea sharing regarding some of the most pressing information security issues facing the healthcare industry today.

5 steps to cybersecurity for Internet of Things medical devices

August 16, 2016

The healthcare industry is plagued with data breaches and other cybersecurity nightmares. At the same time, connected medical devices – components of the so-called Internet of Things – are multiplying, opening more holes in security and creating terrible potential for patient casualties. The National Cybersecurity Center of Excellence (NCCoE), established by the National Institute for Standards and Technology (NIST), released its first cybersecurity practice guide last year called "Securing Electronic Health Records on Mobile Devices."

Internet of Medical Things

July 27, 2016

NCCoE Computer Scientist Gavin O'Brien will participate in a panel discussion on "Standards and Regulations Supporting Medical Device Cybersecurity and Privacy" at 10:50am at the New Jersey Hospital Association's Internet of Medical Things conference.  

Technology is Making Mobile EHRs a Reality

July 14, 2016

Hospitals that integrate EHRs have started to look at external standards, such as those presented by the National Cybersecurity Center of Excellence (NCCoE) that attempt to create "best practice" guidelines for EHR security. Coupled with the MDM policies of the institution, they can create an environment that is functional, yet secure.

Mobilizing Health Care Delivery for Better Outcomes

March 23, 2016

From the hospital hallways to home-based treatment, smartphones, tablets and wearables are aiding health care practitioners in their treatment of patients by providing secure access to critical, real-time patient data in electronic medical records. When the NIST and NCCoE established their cybersecurity guidelines around securely mobilizing electronic health records, there’s a reason they included the suggestion of utilizing an enterprise mobility management solution (EMM).

Why NIST Is Revising Infusion Pump Cybersecurity Guidance

March 06, 2016

The National Institute of Standards and Technology is reworking its guidance on the cybersecurity of wireless infusion pumps, with plans to release the document by the end of this year, says Gavin O'Brien, a computer scientist at NIST's National Cybersecurity Center of Excellence, which is taking charge of the project.

The upcoming guidance is a new version of a white paper that NIST first unveiled in December 2014 about the cybersecurity of wireless infusion pumps. The document is being revised based, in part, on feedback NIST received from healthcare industry stakeholders about the original white paper, which was criticized by some as being too prescriptive, O'Brien says.

Security of networked medical devices must accommodate real-world medical practice

March 02, 2016

Infusion pumps are one of the most ubiquitous medical devices in the United States, but even as they provide patients with nutrients and medication, they also provide hackers with a potential entry point into hospital networks. Nathan Lesser, Deputy Director of the National Cybersecurity Center of Excellence (NCCoE), has been working with healthcare organizations to study how best to secure networked medical devices like infusion pumps without impeding the work of doctors and nurses.

HIMSS Conference and Exhibition

February 28, 2016

The NCCoE will be co-exhibiting with NIST at the Healthcare Information and Management Systems Society (HIMSS) Conference and Exhibition from Feb. 29 to March 4, 2016.