Keynote on IEC
|
|
- Primrose Sullivan
- 7 years ago
- Views:
Transcription
1 Oct. 30, 2012, Luebeck Keynote on IEC What is the objective of IEC ? Which benefits are provided for hospitals? Where apply the key properties of IEC ? Beim Strohhause Hamburg phone +49 (0) fax +49 (0) web Dipl.-Ing. Oliver P. Christ CEO Prosystem AG / Prosystem USA LLC
2 2
3 Scope and Key Properties of IEC : 2010 This standard defines roles, responsibili3es and ac3vi3es that are necessary for RISK MANAGEMENT of IT- NETWORKS incorpora3ng MEDICAL DEVICES to address Ø SAFETY, Ø EFFECTIVENESS Ø DATA & SYSTEM SECURITY (the KEY PROPERTIES), Diese int. Norm definiert Aufgaben, Verantwortlichkeiten und Ak6vitäten: Sicherheit für Pa3enten, Anwender und DriVe Effek6vität *) = Wirksamkeit eines medizinischen IT Netzwerkes angestrebte Abläufe zu erreichen (Workflow) Daten- und Systemsicherheit Schutz vor dem Verlust der Vertraulichkeit, der Vollständigkeit und der Verfügbarkeit der Daten und Systeme *) German Na6onal Foodnote 3
4 Milestones & Publication Dates of IEC series Publication of International Standard: October 27 th, 2010 Publication of the German national Version: Nov., 2011 Last international Meeting JWG7: Sept 24-25, 2012, Vienna Further Technical Reports for the IEC series: - Responsibility Agreement (IEC y) - Distributed Alarm Systems (IEC y) 4
5 The structure of the IEC series IEC Part 1: Roles, Responsibili6es and Ac6vi6es IEC X References to other IT Standards / Spec ISO/IEC :2005 IEC 62304:2006 IEEE ff HL7, DICOM IEC Y Technical Reports Y = 1: Step- by Step RM Y = 2: Security Y = 3: Wireless Y = 4: HDO Guidance Y = 5: Alarm Integra6on Y = 6: Responsibility Agreement 5
6 Application of risk management for IT-networks incorporating medical devices Part 2-Y: Guidance for Responsibility Agreements This Technical Report provides guidance on implemen3ng RESPONSIBILITY AGREEMENTS, which are required in ISO/IEC for the purpose of defining the roles and responsibili3es of all relevant stakeholders in the MEDICAL IT- NETWORK. Stakeholders may include health delivery organiza3ons, IT vendors, medical device manufacturers and others. RESPONSIBILITY AGREEMENTS are intended to support risk management of the three KEY PROPERTIES (SAFETY, EFFECTIVENESS, and DATA AND SYSTEMS SECURITY) for the benefit of pa3ents. The goal of a responsibility agreement is to establish roles and responsibili3es among the stakeholders engaged in the incorpora3on of a MEDICAL DEVICE into an IT- NETWORK in order to support compliance to These roles and responsibili3es should cover the complete lifecycle of the resul3ng MEDICAL IT- NETWORK info@prosystem-ag.com 6
7 The Start: Responsibility Agreement among various parties Hospital IT Department (IT) BioMed (MT) Einkauf und Vertrags- management MDM IT- Provider 7
8 Responsibility Agreement Provides legal framework for collaboration Is needed, when Medical Devices from more than one supplier are intended to be incorporated into one (medical) IT network Recommand also to be used for internal departments at a Responsible Organization (e.g. BioMeds, IT, others) It is suitable as a Service Level Agreement (SLA) Content Identification of all parties to be involved Specification of Medical IT-Network and project goals. Description of roles, responsibilities and activities Definition of all Information to be provided / exchanged info@prosystem-ag.com 8
9 Example: Medical Device Regula6on in Europe (MDD) Who is responsible for Safety & Effectiveness? Located outside EU 93/42/EEC Criteria: Name + Address First- 6me placing on the market Placing on the market 9
10 Essential Requirements (MDD inkl. 2007/47/EG vom ) 13. Information supplied by the manufacturer (MDD 93/42/EEC, Annex I) Each device must be accompanied by the information needed to use it safely and properly, taking account of the training and knowledge of the potential users, and to identify the manufacturer. relevant for the manufacturer 10
11 Example: Legal Requirements in German Medical Device Act (MPBetreibV; Stand: ; I 2326) Rules for Responsible Organisation: Medical Devices shall be established, operated and used only in accordance with their Intended Use & state-of-the art Personnel need necessary education & experience to established, operated, use and maintain Medical Devices Combined Medical Devices (including Accessories and Software) shall only be put into service according the rules above The Operator/User of a Medical Device (or System) must cross-check the integrity of the functional capabilities of a Medical Device (including SW) before applying it to a patient. These rules are also applicable for Medical Devices incorporated to an Medical IT-Network 11
12 Defini6on of Medical Device according 2007/47/EEC medical device means any instrument, apparatus, appliance, sodware, material or other ar3cle, whether used alone or in combina3on, including the sodware intended by its manufacturer to be used specifically for diagnos3c and/or therapeu3c purposes and necessary for its proper applica3on, intended by the manu- facturer to be used for human beings for the purpose of. : 12
13 Essential Requiremements MDD, Annex I, clause 12.1a For devices which incorporate so2ware or which are medical so2ware in themselves, the so2ware must be validated according to the state of the art taking into account the principles of - development lifecycle, - risk management *), - valida?on and verifica?on. *) relevant for Sodware: DIN EN ISO DIN EN IEC/TR IEC Health sodware systems Part 1: General requirements 13
14
15 Electrical Safety: IEC (3 rd edition) In an environment of 1,5 m around an (accommodated) Patient increased requirements for Medical Electrical Equipment do apply including their connection to (medical) IT networks. 15
16 PEMS = Programmable Electrical Medical Systems IEC /A1 (8.2012) PEMS intended to be connected to an IT-Network If the PEMS is intended to be incorporated into an IT-NETWORK that is not validated by the PEMS MANUFACTURER, the MANUFACTURER shall make available instructions for implementing such connection including the following: a) the purpose of the PEMS s connection to an IT-NETWORK; b) the required characteristics of the IT-NETWORK incorporating the PEMS; c) the required configuration of the IT-NETWORK incorporating the PEMS; d) the technical specifications of the network connection of the PEMS including security specifications; e) the intended information flow between the PEMS the IT-NETWORK and other devices on the IT-NETWORK, and the intended routing through the IT-NETWORK; and NOTE 1 This can include aspects of effectiveness and data and system security as related to BASIC SAFETY and ESSENTIAL PERFORMANCE (see also Clause H.6 and IEC :2010). f) a list of the HAZARDOUS SITUATIONS resulting from a failure of the IT-NETWORK to provide the characteristics required to meet the purpose of the PEMS connection to the IT-NETWORK. Compliance is checked by inspec?on of the instruc?ons. 16
17 IEC clause
18 IEC /A1 (continue) In the ACCOMPANYING DOCUMENTS the MANUFACTURER shall instruct the RESPONSIBLE ORGANISATION that: connection of the PEMS to an IT-NETWORK that includes other equipment could result in previously unidentified RISKS to PATIENT, OPERATORS or third parties; the RESPONSIBLE ORGANISATION should identify, analyze, evaluate and control these RISKS; subsequent changes to the IT-NETWORK could introduce new RISKS and require additional analysis; and changes to the IT-NETWORK include: changes in the IT-network configuration; connection of additional items to the IT-NETWORK; disconnecting items from the IT-NETWORK; update of equipment connected to the IT-NETWORK; upgrade of equipment connected to the IT-NETWORK. NOTE 3: IEC provides guidance for the RESPONSIBLE ORGANIZATION to address these RISKS. Compliance is checked by inspec?on of the ACCOMPANYING DOCUMENTS. 18
19 Important roles and responsibilities in IEC Responsible Organiza3on Top Management reports assigns Risk- Manager provide Informa6on Medical Devices Manufacturer Others 19
20 The Medical IT-Network (protection goal of IEC ) Originally separate Medical Devices get connected via an (unsafe & unsecure) IT-Network of the Responsible Organization Out of this general IT-Network emerge a new The Issues are Medical IT-Network Heavily regulated safe Medical Devices get connected with off-the-shelf IT-Hardware There is no clear Responsibilities established (MT vs. IT) Disturbances/Overload at an IT-Network could compromise the safety of Medical Devices IT-Networks are supposed to run 24/7 info@prosystem-ag.com 20
21 Requirements to: 21
22 Change-Release- Management (upper part)
23 Change-Release-Management (lower part)
24 Med. IT-Network Documentation Information-flow (simplified) Information-flow and Dataflow in the Network Medical IT- Network Hospital Network UltraSound Clinical- Worksta6on Router Switch PACS - System DICOM - Image Pa6entdata 24
25 Risk-Management Plan Key Properties Definition for each Medical IT-Network (separately) Key Properties for Risk-Management are: Safety for Patient, User/Operator und Third Parties Effectiveness for intended workflows supported by the IT-Network ability to produce the intended result for the PATIENT and the RESPONSIBLE ORGANIZATION Data- & System Security reasonable protection from degradation of confidentiality, integrity and availability (of information assets) 25
26 Risk-Management Central Process of IEC for: Identification of Hazards Evaluation of corresponding Risks Control of these Risks always in conjunction with the Intended Use of a network The Process Risk-Management shall be applied Before putting a Medical IT-Network into service When modifying an existing Medical IT- Network and/or its components info@prosystem-ag.com 26
27 Risk Analysis & Evaluation - Defined Terms Cause Blackbox UltraSound Equipment PACS - System Clinical- Worksta6on Hazard Hazardous Situa6on Amniocentesis 27
28 Which benefits provide IEC ? Insures the Ability to communicate between the Responsible Organization and its Suppliers (MDM, IT-Provider, others) Introduce the concept of Medical IT-Network and requires a distinguished separation to other IT Networks. Clarifies Requirements for Safety of Medical IT-Networks (safety, effectiveness, security) and protect against liability issues. Requires 5 Processes to ensure that Medical IT-Networks can be operated safe & effective Provides Ability for decision making for complex issues by utilizing systematically a Risk-Management approach 28
29 What are the objectives of IEC ? Talk to each other! (internally, externally, RO with Suppliers) Balanced Key Properties (Risk-Policies of the RO for) Safety (for Patient, User/Operator and Third Parties) Effectiveness (for workflows supported by the IT-Network) Data & System Security (confidentiality, integrity and availability) Implementation of a RM-Process for Medical IT-Networks (+ Change-, Configuration-, Monitoring and Event-Management) Integration* ) of MD in IT-Network only with Risk Controls (after RM-Process or by a Change Permit ) * ) or withdrawal Conscious Decisions! (for Residual Risks of Med. IT-Networks) 29
30 How will IEC impact the Healthcare Sector? (from a Hospital viewpoint) Phase I: Gesprächsfähigkeit herstellen ( IEC Readiness ) Gain Knowledge about IEC requirements; establish required technical documents; open up for dialog with various suppliers. Phase II: Service-Partnerschaft einrichten ( IEC Willingness ) Continuous Collaboration with various Suppliers (MDM, IT-Provider); cooperation is based on Responsibility Agreement(s) e.g. Service-Level Agreements; Implementation of suitable Processes; monthly accurate Security-Patches; testing and release of security-patches in a timely manner; Collaboration with competitive ROs and Suppliers Phase III: RM-Partnerschaft aufbauen ( IEC fulfilling best ) Hospitals (RO) benefit from external Integration-Services from MD-Manufacturer / IT-Provider, e.g. by utilizing external Medical IT-Network Risk-Manager services for Moderation and Integration activities. They establish and maintain detailed IEC Checklists and operate with valid Security-Documentation; Change-Release- Management will become a routine process on a daily basis. 30
31 Summary and Examples for Implementation The foundation to apply IEC is in place Each Medical IT-Network has been Risk analized A comprehensive Technical File for each Medical IT-Network Established Processes ensure a consistent approach for - Changes - Events Activities and Responsibilities are clearly defined Next steps shall be: Improvement of existing Processes Integration of further Medical IT-Networks Establishing Interfaces to other Processes 31
Medical Device Software Do You Understand How Software is Regulated?
Medical Device Software Do You Understand How Software is Regulated? By Gregory Martin Agenda Relevant directives, standards, and guidance documents recommended to develop, maintain, and validate medical
More informationFAQs on the Standard IEC 80001-1 (Risk management for IT-networks incorporating medical devices)
Introduction FAQs zur IEC 80001-Rev. 2.1 Stand 24.11.2010 An increasing number of medical devices, for example medical imaging devices, are designed to exchange electronic information with other devices,
More informationMedical Device Software Standards for Safety and Regulatory Compliance
Medical Device Software Standards for Safety and Regulatory Compliance Sherman Eagles +1 612-865-0107 seagles@softwarecpr.com www.softwarecpr.com Assuring safe software SAFE All hazards have been addressed
More informationPrac+cali+es of CE technical file and quality system for medical so=ware
Prac+cali+es Prac+cali+es CE technical file and quality system for medical so=ware Hans van Dulmen s it a Medical Device (MDD, AMD, VD)? What class Medical Device? Quality System constella+on No+fied Body
More informationISO 14001:2004 vs. ISO 14001:2015
ISO 14001:2004 vs. ISO 14001:2015 1. General Changes at the second Committee Draft Stage The new standard: Adopts high-level structure and terminology of Annex SL, a unified guideline used for the development
More informationPreparing yourself for ISO/IEC 27001 2013
Preparing yourself for ISO/IEC 27001 2013 2013 a Vintage Year for Security Prof. Edward (Ted) Humphreys (edwardj7@msn.com) [Chair of the ISO/IEC and UK BSI Group responsible for the family of ISMS standards,
More informationSo#ware quality assurance - introduc4on. Dr Ana Magazinius
So#ware quality assurance - introduc4on Dr Ana Magazinius 1 What is quality? 2 What is a good quality car? 2 and 2 2 minutes 3 characteris4cs 3 What is quality? 4 What is quality? How good or bad something
More informationA Security Risk Management Framework for Networked Medical Devices
A Security Risk Management Framework for Networked Medical Devices Anita Finnegan, Fergal Mc Caffery, Gerry Coleman Regulated Software Research Centre & Lero Dundalk Institute of Technology Dundalk THE
More informationThis is a preview - click here to buy the full publication
IEC/TR 80001-2-3 TECHNICAL REPORT Edition 1.0 2012-07 colour inside Application of risk management for IT-networks incorporating medical devices Part 2-3: Guidance for wireless networks INTERNATIONAL ELECTROTECHNICAL
More informationPoten&al Impact of FDA Regula&on of EMRs. October 27, 2010
Poten&al Impact of FDA Regula&on of EMRs October 27, 2010 Agenda The case for regula&ng Impact on manufacturers Impact on providers Recommenda&ons and best prac&ces 2 A Medical Device Is an instrument,
More information978-1-4799-0913-1/14/$31.00 2014 IEEE
This paper introduces CMDB pa4erns as an approach to help address conceptual issues in CMDB implementa7ons and provide prac77oners with a common set of terms for useful designs. Configura7on Management
More informationIT Change Management Process Training
IT Change Management Process Training Before you begin: This course was prepared for all IT professionals with the goal of promo9ng awareness of the process. Those taking this course will have varied knowledge
More informationHow to Upgrade SPICE-Compliant Processes for Functional Safety
How to Upgrade SPICE-Compliant Processes for Functional Safety Dr. Erwin Petry KUGLER MAAG CIE GmbH Leibnizstraße 11 70806 Kornwestheim Germany Mobile: +49 173 67 87 337 Tel: +49 7154-1796-222 Fax: +49
More informationThe New Paradigm for Medical Device Safety. Addressing the Requirements of IEC 60601-1 Edition 3.1
The New Paradigm for Medical Device Safety Addressing the Requirements of IEC 60601-1 Edition 3.1 Medical devices play a vital role in the diagnosis and treatment of most health-related conditions, and
More informationConfigura)on Management Process and Environment MACS Review 1 February 5th, 2010 Roland Moser
Configura)on Management Process and Environment MACS Review 1 February 5th, 2010 Roland Moser R. Gutleber 1 Goals Configura)on Management (CM) is the implementa)on and the execu)on of processes and procedures
More informationQuality Label and Cer0fica0on Processes France- Suisse Summit on ehealth Interoperability 20 May 2014
Quality Label and Cer0fica0on Processes France- Suisse Summit on ehealth Interoperability 20 May 2014 Karima Bourquard Director of Interoperability IHE- Europe Tes0ng and Cer0fica0on Objec0ves To design
More informationAND. CE IT Community Town Hall Meeting Feb. 8, 2012
Overview of ANSI/AAMI/IEC 80001 1 (2010) Application of Risk Management for IT Networks Incorporating Medical Devices Part 1: Roles, Responsibilities, and Activities Moderator: AND Elliot B Sloane, PhD
More informationHow To Implement An Information Security Management System
ISO/IEC 27001 Informa2on Security Management System Presented by Daminda Perera 26/07/2008 ISO/IEC 27001:2005 Informa@on technology Security techniques Informa@on security management systems Requirements
More informationEstablishing Effec/ve Data Governance
Establishing Effec/ve Data Governance Data Quality Council Much of what I say is taken from 2 publica/ons put out by the na/onal Center for Educa/on Sta/s/cs and Na/onal Forum on Educa/on Sta/s/cs Forum
More informationInterna'onal Standards Ac'vi'es on Cloud Security EVA KUIPER, CISA CISSP EVA.KUIPER@HP.COM HP ENTERPRISE SECURITY SERVICES
Interna'onal Standards Ac'vi'es on Cloud Security EVA KUIPER, CISA CISSP EVA.KUIPER@HP.COM HP ENTERPRISE SECURITY SERVICES Agenda Importance of Common Cloud Standards Outline current work undertaken Define
More informationAPP-SOLUTELY SECURITY: The State of Mobile Security. CARTES Secure Connexions The Digital Security World MAY 14, 2014
APP-SOLUTELY SECURITY: The State of Mobile Security CARTES Secure Connexions The Digital Security World MAY 14, 2014 APP-SOLUTELY SECURITY: The State of Mobile Security Session Topics Current Sta*s*cs
More informationCase Studies in Solving Testing Constraints using Service Virtualization
Case Studies in Solving Testing Constraints using Service Virtualization Rix.Groenboom@Parasoft.NL 2/21/14 1 Introduction Paraso& is supplier automated tes1ng solu1ons Since 1984, Los Angeles (US) and
More informationContact address: Global Food Safety Initiative Foundation c/o The Consumer Goods Forum 22/24 rue du Gouverneur Général Eboué 92130 Issy-les-Moulineaux
Version 6.3 Contact address: Global Food Safety Initiative Foundation c/o The Consumer Goods Forum 22/24 rue du Gouverneur Général Eboué 92130 Issy-les-Moulineaux France Secretariat email: gfsinfo@theconsumergoodsforum.com
More informationQuality Label and Certification Processes Education Material on ehealth Interoperability. Karima Bourquard Director of Interoperability IHE-Europe
Quality Label and Certification Processes Education Material on ehealth Interoperability Karima Bourquard Director of Interoperability IHE-Europe Testing and Certification Objectives To design a European
More informationThe Medical Products Agency s Working Group on Medical Information Systems. Project summary
The Medical Products Agency s Working Group on Medical Information Systems Project summary Proposal for guidelines regarding classification of software based information systems used in health care This
More informationInternational standards and guidance that address Medical Device Software
International standards and guidance that address Medical Device Software Sherman Eagles Technical Fellow Medtronic CRDM Convener IEC 62A/ISO 210 JWG3 Co-convener IEC 62A/ISO 215 JWG7 Standards in the
More informationIntroduction to Risk Management for Software Projects. Peter Kolb. Distributed and Outsourced Software Engineering, - 1 - ETH Zurich
Introduction to Risk Management for Software Projects Peter Kolb Distributed and Outsourced Software Engineering, - 1 - ETH Zurich Purpose of Presentation To provide an Overview of the Risk Management
More informationCE Marking and Technical Standardisation
GAMBICA Technical Guide CE Marking and Technical Standardisation Guidelines for application to Electrical Power Drive Systems Edition 4 : 2015 CE Marking and Technical Standardisation Guidelines for application
More informationISO 14971:2012 Ensuring Compliance to Annex Z Requirements
ISO 14971:2012 Ensuring Compliance to Annex Z Requirements David Amor, MS, CQA Managing Partner MEDgineering www.medgineering.com david@medgineering.com Agenda Risk Management Best Prac8ces Overview ISO
More informationPROJECT PORTFOLIO SUITE
ServiceNow So1ware Development manages Scrum or waterfall development efforts and defines the tasks required for developing and maintaining so[ware throughout the lifecycle, from incep4on to deployment.
More informationTG 47-01. TRANSITIONAL GUIDELINES FOR ISO/IEC 17021-1:2015, ISO 9001:2015 and ISO 14001:2015 CERTIFICATION BODIES
TRANSITIONAL GUIDELINES FOR ISO/IEC 17021-1:2015, ISO 9001:2015 and ISO 14001:2015 CERTIFICATION BODIES Approved By: Senior Manager: Mpho Phaloane Created By: Field Manager: John Ndalamo Date of Approval:
More informationISO 31000:2009 - ISO/IEC 31010 & ISO Guide 73:2009 - New Standards for the Management of Risk
Kevin W Knight AM CPRM; Hon FRMIA; FIRM (UK); LMRMIA: ANZIIF (Mem) ISO 31000:2009 - ISO/IEC 31010 & ISO Guide 73:2009 - New Standards for the Management of Risk History of the ISO and Risk Management Over
More informationForeword... 11 Introduction - The Global Food Safety Initiative (GFSI)... 11 Scope... 12 Section Overview... 12 Normative References...
Version 6.3 Overview Contents Foreword... 11 Introduction - The Global Food Safety Initiative (GFSI)... 11 Scope... 12 Section Overview... 12 Normative References... 13 9 Foreword Global Food Safety Initiative
More informationBreakout A: From Paper to EMR- Preparing for the Transi;on
Quality Counts! Breakout A: From Paper to EMR- Preparing for the Transi;on The Maine Regional Extension Center Forum Breakout Objec
More informationProcesses for the Development of Healthcare Applications. Christian Johner
Processes for the Development of Healthcare Applications Christian Johner Process/Life-Cycle Models: The true history Directives and Standards: Requirements with Respect to Processes Conclusion, Recommendations
More informationMedical Device Training Program 2015
Medical Device Training Introduction Supplementary training and education is often overlooked by medical device professionals until it is triggered by an upcoming FDA or Notified Body and/or ISO 13485
More informationNCSBN s Distance Education Guidelines for Prelicensure Nursing Programs
NCSBN s Distance Education Guidelines for Prelicensure Nursing Programs NCSBN s Virtual Conference on Distance Educa8on in Prelicensure Programs Nancy Spector, PhD, RN, FAAN Bobby Lowery, PhD, FNP- BC,
More informationAVOIDING SILOED DATA AND SILOED DATA MANAGEMENT
AVOIDING SILOED DATA AND SILOED DATA MANAGEMENT Dalton Cervo Author, Consultant, Management Expert September 2015 This presenta?on contains extracts from books that are: Copyright 2011 John Wiley & Sons,
More informationPhysiologic Monitoring Systems & Connectivity
Physiologic Monitoring Systems & Connectivity Barbara Majchrowski, MHSc, PEng CE-IT Town Hall April 11, 2012 ECRI Institute Overview ECRI Institute is an independent, not-for-profit, research organization
More informationSan Francisco Chapter. Presented by Mike O. Villegas, CISA, CISSP
Presented by Mike O. Villegas, CISA, CISSP Agenda Information Security (IS) Vision at Newegg.com Typical Issues at Most Organizations Information Security Governance Four Inter-related CoBIT Domains ISO
More informationGraduate Systems Engineering Programs: Report on Outcomes and Objec:ves
Graduate Systems Engineering Programs: Report on Outcomes and Objec:ves Alice Squires, alice.squires@stevens.edu Tim Ferris, David Olwell, Nicole Hutchison, Rick Adcock, John BrackeL, Mary VanLeer, Tom
More informationApplying Standards to in-house developed software, an experience to be shared. 29 th May 2012 IPEM Bespoke Software Development, UCL London
Applying Standards to in-house developed software, an experience to be shared 29 th May 2012 IPEM Bespoke Software Development, UCL London 1 Belfast HSC Trust Based in Regional Medical Physics Service,
More information2015. All rights reserved.
DOCUMENT: Future AAMI/IEC 62304:2006/AMD1, 18-August-2015 Final Draft International Standard for Vote, Amendment 1 to IEC 62304: Medical device software Software life cycle processes. Public Review Draft
More informationFunctional Safety Management of the development process of safety related programmable electronic systems at Jaquet Technology Group
Functional Safety Management of the development process of safety related programmable electronic systems at Jaquet Technology Group Document type: Certification Report Client: Jaquet Technology Group
More informationEuropean technical approval
Authorised and notified according to Article 10 of the Council Directive 89/ 106/EEC of 21 December 1988 on the approximation of laws, regulations and administrative provisions of Member States relating
More informationHow To Write Software
1 Medical Device Software - Software Life Cycle Processes IEC 62304 2 Credits John F. Murray Software Compliance Expert U.S. Food and Drug Administration Marcie R. Williams Medical Device Fellow Ph.D.
More informationCyber Security From product to system solution
Markus Brändle, Network Management Forum Heidelberg, 8./9./10. October 2013 Cyber Security From product to system solution ABB Network Management Forum October 14, 2013 Slide 1 Cyber Security A definition
More informationISO 13485:201x What is in the new standard?
ISO 13485:201x What is in the new standard? Eric Finegan, Quality Mgr, BTE Technologies, Inc. 2015-09-10 1 Presentation Slides This slide deck is the presentation performed on 2015-09-10. A more detailed
More informationGetting Started with Data Governance
Getting Started with Data Governance Gregory S. Nelson, MMCI, CPHIMS ThotWave Technologies, LLC. 1 2 1 3 Maturation Data Quality Data Access Data Integra6on Governance + MDM Data Management 4 2 Data Governance
More informationStrategies for Medical Device So2ware Development Presented By Anthony Giles of Blackwood Embedded Solu;ons And a Case Study by Francis Amoah of Creo
Strategies for Medical Device So2ware Development Presented By Anthony Giles of Blackwood Embedded Solu;ons And a Case Study by Francis Amoah of Creo Medical Introduc;on Standards 60601-1 in par;cular
More informationPARADIGM SHIFT FROM LARGE RELEASES TO CONTINUOUS DEPLOYMENT OF SOFTWARE. DESIGNING A REFERENCE MODEL FOR CONTINUOUS DEPLOYMENT.
PARADIGM SHIFT FROM LARGE RELEASES TO CONTINUOUS DEPLOYMENT OF SOFTWARE. DESIGNING A REFERENCE MODEL FOR CONTINUOUS DEPLOYMENT. PhD Student Teemu Karvonen Supervisors: Markku Oivo and Pasi Kuvaja XP2015
More informationINFORMATION ASSURANCE
Service Definition Thomson Reuters Legal Matter Management service (Serengeti Tracker) is the highest rated legal matter management, e-billing and analytics system designed for inhouse legal departments.
More informationElectrical safety. in control and auxiliary circuits. Safety objectives
1 Electrical safety in control and auxiliary circuits The increasing health and safety requirements on machines and installations require comprehensive measures to protect man and machine against possible
More informationRisk Management and the Impact of EN ISO 14971:2012 Annex Z
Risk Management and the Impact of EN ISO 14971:2012 Annex Z BSI 2014 Medical Device Mini-Roadshow Ibim Tariah Ph.D Technical Director, Healthcare Solutions Copyright 2014 BSI. All rights reserved. 1 Risk
More informationEquipment vs. Component
Equipment vs. Component Dipl. Ing. Ursula Aich Regierungspräsidium Darmstadt National focal point for the Market Surveillance in the field of the ATEX-Directive in Germany Chair of ATEX ADCO Free movement
More informationInformation Security: Business Assurance Guidelines
Information Security: Business Assurance Guidelines The DTI drives our ambition of prosperity for all by working to create the best environment for business success in the UK. We help people and companies
More informationWHITEPAPER: SOFTWARE APPS AS MEDICAL DEVICES THE REGULATORY LANDSCAPE
WHITEPAPER: SOFTWARE APPS AS MEDICAL DEVICES THE REGULATORY LANDSCAPE White paper produced by Maetrics For more information, please contact global sales +1 610 458 9312 +1 877 623 8742 globalsales@maetrics.com
More informationCase Study. The SACM Journey at the Ontario Government
Case Study The SACM Journey at the Ontario Government Agenda Today s Objec=ves The Need for SACM Our SACM Journey Scope and Governance Process Ac=vi=es Key Process Roles Training and Measurement Lessons
More informationInsulation resistance
The insulation resistance is particularly important for the prevention of damage and injury, and for the reliability of electrical systems and equipment. On the one hand it is basis for the protection
More informationOverview of International Medical Device Human Factors Standards. Ed Israelski PhD, Director of Human Factors Abbott Abbott Park, IL, USA
Overview of International Medical Device Human Factors Standards Ed Israelski PhD, Director of Human Factors Abbott Abbott Park, IL, USA Outline History of Medical Device Human Factors Standards Summary
More informationHealth, Safety and Environment Policy
Health, Safety and Environment Policy Novartis Global Policy March 1, 2014 Version HSE 001.V1.EN 1. Introduction At Novartis, our goal is to be a leader in Health, Safety and Environment (HSE). We strive
More informationSupplying new machinery
A short guide to the law and your responsibilities when supplying machinery for use at work Introduction This leaflet can help you if you are supplying machinery for use at work. It explains the main health
More informationLIST OF INTERNATIONAL STANDARDS FOR MEDICAL DEVICES
NO STANDARD DESCRIPTION 1. ISO 13485: 2003 Medical Devices: Quality Management System: Requirements For Regulatory Purposes 2. EN540 Clinical Investigation of Medical Devices For Human 3. EN285 Sterilization
More informationHow To Grow A Data Center System
Zettaset Big Data Ecosystem Discussion Guide Jim Vogt, President & CEO, Zettaset June 20, 2014 The informa,on provided in this document cons,tutes confiden,al and proprietary informa,on of Ze8aset, Inc.
More informationNetwork Certification Body
Network Certification Body Scheme rules for assessment of railway projects to requirements of the Railways Interoperability Regulations as a Notified and Designated Body 1 NCB_MS_56 Contents 1 Normative
More informationRecognition of my Product (Testing Laboratory) Why I need recognition, what is the effect?
Page 1 of 23 Accreditation of Testing Laboratories Accreditation of (Sports Surface) Testing Laboratories Konrad Binder (OIST / Austria) ISSS Year 2000 Forum (Schaffhausen) Note: This is a summary of the
More informationDevelopment of a Process Assessment Model for Medical Device Software Development
Development of a Process Assessment Model for Medical Device Software Development Marion Lepmets, Paul Clarke, Fergal McCaffery, Anita Finnegan, Alec Dorling Regulated Software Research Centre, Dundalk
More informationIHE IT Infrastructure Technical Committee White Paper. Template for XDS Affinity Domain Deployment Planning
Integrating the Healthcare Enterprise 5 IHE IT Infrastructure Technical Committee White Paper 10 Template for XDS Affinity Domain Deployment Planning 15 20 Version 15.0 December 2, 2008 Copyright 2008
More informationQuality Risk Management The Pharmaceutical Experience Ann O Mahony Quality Assurance Specialist Pfizer Biotech Grange Castle
Quality Risk Management 11 November 2011 Galway, Ireland Quality Risk Management The Pharmaceutical Experience Ann O Mahony Quality Assurance Specialist Pfizer Biotech Grange Castle Overview Regulatory
More informationFounda'onal IT Governance A Founda'onal Framework for Governing Enterprise IT Adapted from the ISACA COBIT 5 Framework
Founda'onal IT Governance A Founda'onal Framework for Governing Enterprise IT Adapted from the ISACA COBIT 5 Framework Steven Hunt Enterprise IT Governance Strategist NASA Ames Research Center Michael
More informationDigital Health Apps - Insider views on the Challenges and Opportunities
Digital Health Apps - Insider views on the Challenges and Opportunities Introduction and Welcome to ALAN - Graham Worsley, Designability Understanding the New Regulatory and Information Environment for
More informationHow To Know If A Mobile App Is A Medical Device
The Regulation of Medical Device Apps Prepared for West of England Academic Health Science Network and University of Bristol June 2014 June 2014 1 Table of Contents 1 Purpose...3 2 Scope...3 3 The Regulation
More informationSoftware-based medical devices from defibrillators
C O V E R F E A T U R E Coping with Defective Software in Medical Devices Steven R. Rakitin Software Quality Consulting Inc. Embedding defective software in medical devices increases safety risks. Given
More informationASTRAZENECA GLOBAL POLICY SAFETY, HEALTH AND ENVIRONMENT (SHE)
ASTRAZENECA GLOBAL POLICY SAFETY, HEALTH AND ENVIRONMENT (SHE) THIS POLICY SETS OUT HOW WE WILL MEET OUR COMMITMENT TO OPERATING OUR BUSINESS IN A WAY THAT PROTECTS PERSONAL HEALTH, WELLBEING AND SAFETY
More informationEnterprise Mobility for Schools
Enterprise Mobility for Schools Getting better connected. Call 0115 846 4000 Email info@xma.co.uk Visit www.xma.co.uk Follow us @WeareXMA We develop, deliver and maintain innovative IT solutions that enhance
More informationName: Lynda Cooper Date: November 24th. Revising ISO/IEC 20000 to fit the future of service management
Name: Lynda Cooper Date: November 24th Revising ISO/IEC 20000 to fit the future of service management Agenda Brief overview of ISO20000 Changes Why and How What Your views and how you can influence the
More informationAUDITOR GUIDELINES. Responsibilities Supporting Inputs. Receive AAA, Sign and return to IMS with audit report. Document Review required?
1 Overview of Audit Process The flow chart below shows the overall process for auditors carrying out audits for IMS International. Stages within this process are detailed further in this document. Scheme
More informationEMERGENCY ULTRASOUND: Workflow White Paper
EMERGENCY ULTRASOUND: Workflow White Paper Mark Byrne MD, Rajesh Geria MD, Tobias Kummer MD, Stephen Leech MD, Resa Lewiss MD, Vicki Noble MD, Christopher Raio MD, Michael Stone MD, Vivek Tayal MD, Robert
More informationQuality Management of Software and Systems: DIN ISO 9000-Standards
Quality Management of Software and Systems: DIN ISO 9000-Standards Contents Motivation Product liability and DIN EN ISO 900X Contents of ISO/IEC 90003 Who gives the certificate? What can be certified?
More informationMay 13-14, 2015. Copyright 2015 Open Networking User Group. All Rights Reserved Confiden@al Not For Distribu@on
May 13-14, 2015 NSV Architecture Test Architecture System Under Test Mgmt, Orch, etc. Test Solution VM VM Hypervisor Hypervisor IP Network Methodology Each individual requirement had 1 test case associated
More informationKonformitätsbewertung 3.9 B 17. Guidance for Notified Bodies auditing suppliers to medical device manufacturers
Antworten und Beschlüsse des EK-Med Konformitätsbewertung 3.9 B 17 Guidance for Notified Bodies auditing suppliers to medical device manufacturers Herkunft Notified Body Operations Group Quellen NBOG BPG
More informationInternal. Carl Lidholm. Head of Consulting & Lead Business Architect Tieto Energy & Utilities carl.lidholm@tieto.com.
Internal Carl Lidholm Head of Consulting & Lead Business Architect Tieto Energy & Utilities carl.lidholm@tieto.com Public Meet the speaker Carl Lidholm Tieto Energy & Utilities Head of Consulting & Lead
More informationHow To Design An Integrated Project Management System
Dr. Knapp Dr. Oliver Quirmbach Integration of Software Management and PLM Business Cases Dr. Thomas Knapp Dr. Oliver Quirmbach Agenda 1. CAS Products Processes 2. Current Situation and Challenge 3. Scope
More informationFULLY INTEGRATED GOVERNANCE, RISK MANAGEMENT, COMPLIANCE AND AUDIT SOFTWARE
FULLY INTEGRATED GOVERNANCE, RISK MANAGEMENT, COMPLIANCE AND AUDIT SOFTWARE BENEFITS OF ENTERPRISE RISK MANAGEMENT (ERM) More effec$ve strategic and opera/onal planning: Alignment of objec/ves and risks
More informationInternational Workshop on safety & security of (wireless) medical sensor networks. TU Delft 21 January 2014. Summary report
International Workshop on safety & security of (wireless) medical sensor networks TU Delft 21 January 2014 Summary report Workshop Aims The workshop aims were: 1. to explore safety and security threats
More informationSoftware Maintenance from the System Manufacturer s Perspective. Richard Doherty Chief Technical Officer CIRM
Software Maintenance from the System Manufacturer s Perspective Richard Doherty Chief Technical Officer CIRM Introducing CIRM Who are CIRM? CIRM (Comité International Radio-Maritime) is a non-profit trade
More informationProject Management Introduc1on
Project Management Introduc1on Session 1 Part I Introduc1on By Amal Le Collen, PMP Dr. Lauren1u Neamtu, PMP Session outline 1. PART I: Introduc1on 1. The Purpose of the PMBOK Guide 2. What is a project?
More informationSQAR Section 2. Inhaltsverzeichnis/Table of Contents
PAGE: 2 Inhaltsverzeichnis/Table of Contents Inhalt Contents Seite/Page 1 Zweck Scope 3 2 Anwendungsbereich Applicability 3 3 Begriffe und Abkürzungen Terms and Abbreviation 3 4 Beschreibung der Anforderungen
More informationGuidelines. Safety Integrity Level - SIL - Valves and valve actuators. March 2009. Valves
Valves Guidelines Safety Integrity Level - SIL - Valves and valve actuators March 2009 VDMA German Engineering Federation Valves Manufacturers Association Chairman: Prof.-Dr.-Ing. Heinfried Hoffmann Managing
More informationWG 4 Benchmark paper. Standardization and Certification
WG 4 Benchmark paper Standardization and Certification Benchmark paper on the main requirements for the development of electromobility on a European and international scale Working Group 4 Standardization
More informationMedical Software Development. International standards requirements and practice
Medical Software Development International standards requirements and practice Food and Drug Administration What? A public health agency Why? Protect American consumers How? By enforcing the Federal Food,
More informationA STUDY OF THE APPLICABILITY OF ISO/IEC 17799 AND THE GERMAN BASELINE PROTECTION MANUAL TO THE NEEDS OF SAFETY CRITICAL SYSTEMS
A STUDY OF THE APPLICABILITY OF ISO/IEC 17799 AND THE GERMAN BASELINE PROTECTION MANUAL TO THE NEEDS OF SAFETY CRITICAL SYSTEMS EXECUTIVE SUMMARY March 2003 OF WORK CARRIED OUT FOR JRC ISPRA UNDER CONTRACT
More informationMarketing and Communications Manager. 1028 Heslerton Road, Dunsandel, Canterbury
Position Reports to Brand Manager Marketing and Communications Manager Company Synlait Milk Ltd Date: December 2012 Location 1028 Heslerton Road, Dunsandel, Canterbury Purpose To be Synlait Milk s brand
More informationPatient safety governance for national and cross-border safety initiatives for health IT
Patient safety governance for national and cross-border safety initiatives for health IT Centre for Health Informatics Farah Magrabi, Dean Sittig, Maureen Baker, Jan Talmon, Enrico Coiera The University
More informationEPoSS SRA: Relevant Parts for Generic IoT Infrastructure and the IoT LSPs
EPoSS SRA: Relevant Parts for Generic IoT Infrastructure and the IoT LSPs Cees J.M. Lan+ng (CSEM) Co- Chair of the EPoSS Working Group Smart CommunicaAons & IoT EPoSS Working Group Smart Communica+ons
More informationEASA update Maintenance
Federal Aviation Administration EASA update Maintenance ARSA Symposium March 15, 2012 Karl Specht, EASA Topics EASA update, Staff EASA update, Rules BASA Teething problems EASA Form 1 History Dual Release
More informationSafety-Critical Applications Built via Agile Discipline
Safety-Critical Applications Built via Agile Discipline Nancy Van Schooenderwoert http://www.leanagilepartners.com/ nancyv@leanagilepartners.com September 16, 2008 Copyright 2008 Lean-Agile Partners, Inc.
More information