Photo of John Fuson

John Fuson is a partner in the firm's Health Care, Product Risk Management (PRM), and White Collar and Regulatory Enforcement groups, focusing on U.S. Food and Drug Administration (FDA) enforcement and counseling matters.

Yesterday, the FDA released draft guidance on the management of cybersecurity in medical devices submitted to the agency for premarket review. Noting that cybersecurity threats to the healthcare sector have increased in number and severity, the FDA offered new recommendations for device design, labeling, and documentation that medical device manufacturers will need to consider during premarket submission processes.

The guidance comes shortly after the FDA’s launch of its Medical Device Cybersecurity Playbook, which provides a framework for healthcare delivery organizations to use in preparing for and responding to cybersecurity threats against patient medical devices.

Given rapid changes in technology and increasing innovation in the digital health market, the guidance intends to decrease the risk of cyberattacks that could render medical devices inoperable and potentially harm patients. Comments on the draft guidance are due on March 18, 2019.
Continue Reading FDA Issues New Guidance for the Management of Cybersecurity in Medical Devices

In late 2014, Congress passed the Sunscreen Innovation Act (SIA) to speed the approval of innovative new sunscreen ingredients and formulations, many of which have long been available in Europe, Asia, and Latin America. While the SIA requires FDA to take concrete steps to more quickly review submissions regarding OTC sunscreen ingredients, the SIA does

On October 2, 2014, the FDA released a set of comprehensive guidelines governing the Content of Premarket Submissions for Management of Cybersecurity in Medical Devices. The guidelines are intended to provide direction for manufacturers of medical devices on how to appropriately safeguard devices from a potential security breach; particularly in light of the sensitive