The leading vulnerability research and security solutions provider for healthcare manufacturers, vendors, and providers.

MedSec analyzes the quality and security of technology solutions in the medical device and healthcare industries. We advise and partner with leading manufacturers and vendors to continuously improve quality, reliability and security for healthcare service providers.

Protect Your Data

Provider Solutions

MedSec is now bringing this expertise down market to healthcare providers, to develop unique proprietary workarounds for healthcare specific technology deployments and to deliver information security services to build resiliency within the healthcare ecosystem.

Healthcare provider systems are often proprietary, requiring unique industry specific tools and skillsets to analyze and secure. We have leveraged our relationships working with vendors to cover the core areas of the attack surface where many healthcare organizations are targeted.

Penetration testing will help identify and remove opportunities, or attack vectors, available to attackers who are targeting an organization. MedSec performs penetration testing and works with healthcare providers to address results via standard and custom fixes.

For those institutions that are interested in greatly reducing and possibly eliminating the likelihood of a breach, rather than standalone solutions, we offer a MedSec Security Maturity Review.

MedSec has partnered with leading Managed Security Service Providers and security monitoring technology solutions providers to offer 24/7 monitoring solutions.

Secure Your Devices and Software

Vendor Services

MedSec is the only company worldwide with a team of zero-day vulnerability researchers entirely focused on executing both RF and wired medical machines and devices.

MedSec’s team of researchers assess the security of a wide range of medical devices, from small implantables through to large machinery. The process includes evaluation of embedded software and wireless communications systems. This process includes custom reverse engineering and evaluation of reverse engineering susceptibility,

Assessment services extend to software-only solutions, including licensed third party/open source code or software that has been developed in-house. MedSec’s researchers may review existing source code or reverse engineer as applicable.

Implementing security mechanisms into existing proprietary systems can prove extremely costly if done without the right expertise. In our experience, when medical device vulnerability remediation is done internally only, the manufacturer may only make minor improvements after expending considerable financial and personal resources.

The cyber skills shortage has left manufacturers challenged to give security the attention it requires. MedSec offers an outsourced security management program to manufacturers to help address this problem.

"As the FDA continues to prioritize cyber security, so too must industry manufacturers and healthcare providers."

Justine Bone