Michael McNeilGlobal Product Security & Services Officer
Michael C. McNeil is the current Global Product Security & Services Officer for Royal Philips. In this capacity, McNeil is responsible for leading the global product security program for the company and insuring consistent repeatable processes are deployed throughout their products and services in the Healthcare market. Prior to this assignment, McNeil was the former Global Chief Privacy & Security Officer at Medtronic responsible for the development and design of their initial product security and incident response management programs; Chief IT Security Officer at Liberty Mutual Group; Global Chief Privacy Officer at Pitney Bowes, and Vice President, Chief Privacy Officer of Data Services for Reynolds & Reynolds. McNeil is a noted security and privacy expert, he has conducted in-house training and presentations for industry, customers and clients and has presented at several security and privacy conferences worldwide. Michael is a current member of the Department of Health & Human Services (HHS) Healthcare Industry Cybersecurity Task Force, a Governance Board Co-Chair for the annual Summit, Boston CISO Executive Summits presented by Evanta. He is an active member of the Association for the Advancement of Medical Instrumentation (AMMI), Medical Device Safety & Security Consortium (MDISS), and the NH-ISAC. Michael has held the chair position for the Medical Device Privacy Consortium (MDPC) and currently holds the chair position for the MDPC Device Security Working Group; AdvaMed Cybersecurity Working Group and the Medical Device workstream of HHS Cybersecurity Taskforce. He was recently named an inaugural, 2013 Top 10 Breakaway Leader of Chief Information Security Officer (CISO), and was also awarded in 2013 as the First Minneapolis CISO Visionary Award, in addition to these accomplishments, he was also awarded the 2011 Outstanding MBA of the Year by the National Black MBA Association. Michael is married to Devita McNeil and they are the proud parents of two children (Danielle and Vincent) and grandfather of Jadyn.
Wannacry was the first significant global cyberattack that impacted critical infrastructure in multiple countries. Healthcare was not immune to this attack and medical systems across the globe were affected, most notably the UK National Health System. Healthcare cybersecurity attacks rose 320% from 2015 to 2016 according to Healthcare IT News. As the world increases its connectivity creating the Internet of Things, cybersecurity becomes increasingly crucial to robust operation of critical infrastructure. Medical devices are critical to healthcare organizations being able to provide safe and effective care. Medical devices also pose unique challenges since they touch nearly every facet of healthcare delivery including clinicians, patients, biomedical engineering personnel, information systems personnel and infrastructure. Support and maintenance of medical device systems can vary depending on the hospital department, hospital entity, organizational resources and structure and level of support provided by vendors. Design and implementation of security feature-sets and practices can vary by manufacturer and device line.
This workshop brings together experts with diverse experiences representing healthcare delivery organization (HDO) biomedical engineering and information systems and vendor quality, support and security perspectives. The goal of this workshop is to provide an overview of:
- What are lessons learned from last year’s cyberattacks?
- What is the state of the field of medical device cybersecurity from varying viewpoints?
- How do we, as healthcare delivery organizations, vendors and contractors/consultants improve the cybersecurity posture of the medical device ecosystem?