Armis has announced Oscar Miranda as its new Chief Technology Officer (CTO) for Healthcare, whose new role will include identifying and providing mitigation steps for vulnerabilities associated with connected devices within the healthcare ecosystem.
Armis recently identified a set of nine critical vulnerabilities in the leading solution for pneumatic tube systems (PTS) in North America – the Translogic PTS system by Swisslog Healthcare. This system is used in over 80% of hospitals in North America, and installed in more than 3,000 hospitals worldwide.
Miranda will collaborate with the Armis research team to continue to identify vulnerabilities associated with connected devices used to deliver essential health services within a hospital setting. He will also partner with affected device manufacturers to establish both mitigation and remediation steps.
According to a recently published article by Fortified Health Security (Fortified), more than 22 million people have been affected by healthcare data breaches in 2021 so far — a jump of about 185% from the same period last year. Therefore, visibility and detection of vulnerabilities within the healthcare devices ecosystem is a must.
Most hospital networks have not implemented and operationalised network segmentation between clinical and non-clinical devices, thus exposing a security controls gap that allows a Cyber Threat Actor (CTA) the opportunity to compromise a vulnerable device and pivot to laterally move within an organisation undetected.
With 25 years of experience, of which 18 years were spent in healthcare implementing controls for securing and protecting the privacy of electronic health information, Miranda is an information security thought leader. At Armis, he will evaluate all strategic partnerships to ensure healthcare customer needs are met and will report to Nadir Izrael, Co-Founder and Global CTO at Armis.
“The recent identification, by our research team, of the vulnerabilities within the pneumatic tube systems is validation that in order to effectively identify risk within a hospital setting you must have visibility to all devices that support the medical workflow used to deliver essential health services,” said Oscar Miranda, CTO of Healthcare at Armis.
“I welcome the opportunity to support the teams within Armis to further expand and enhance current capabilities to identify and detect vulnerabilities for both clinical and nonclinical devices to assist our customers in taking a risk-based approach for managing cyber risk to ensure patient safety… first, do no harm.”
To learn more, please click here.