We're hiring! To search job openings click here.
Medical Device Cyber Security Testing and Compliance
Build better 'intelligent' machine-to-machine systems
Developing safe and effective medical devices requires a rigorous validation process that can be very time-consuming and costly without automation. Additionally, teams must comply with IEC 62304, transforming both their teams and development processes.
To shorten certification time and increase time-to-market, many medical organizations reuse or leverage external libraries, and code that is “proven in use” – to shorten their development time and reduce cost. However, this typical software of unknown pedigree (SOUP) must still be considered in the overall evaluation of the safety and effectiveness of the device.
GrammaTech CodeSonar and CodeSentry medical solutions support this process by providing a deeper, more thorough analysis of the complete system using static analysis of both written (or re-used) source as well as 3rd-party binaries, unlocking hidden defects, speeding up the certification process, and reducing your business liabilities through real-time visibility into your code quality.
Empower your teams to deliver the best intelligent medical devices on the market, without the liability.
CodeSonar and CodeSentry help you comply with medical coding standards:
- IEC 61508
- IEC 62304
- FDA Validation Guidance
- Mitre's CWE
- Build Security In (BSI)
- U.S. CERT
A New Frontier for Medical Devices
The medical device market is evolving very quickly and in many dimensions – new technologies now connect hospitals and clinics with remote patients and devices, wearable devices now proliferate the marketplace, more robotics are being used for high-precision procedures, and data/diagnostics are being compiled through big data, making the industry more vulnerable to hackers than ever before.
Organizations that invest upfront and understand the complexities of the evolving medical market can put together a winning strategy to succeed in the medical device marketplace.
Use of Third-Party Software
Third-party software must be inspected carefully before use. You can use CodeSentry to find defects and security vulnerabilities in these third-party binaries.
» Learn more
Increased Network Connectivity
For new medical environments that are uniquely both security-critical and safety-critical, CodeSonar will help you mitigate security risks.
» Learn more
Challenging Multicore Environments
Multicore platforms cause concurrency issues that can be found with CodeSonar, which analyzes the many possible execution paths and interleavings at once.
» Learn more
Join other organizations who rely on GrammaTech for assuring safety and security in medical devices:
 |  |  |  |
 |  |  |  |
 |  |  |  |
 |  |  |  |
Customer Success Story
The FDA uses CodeSonar to investigate complaints and find out why medical devices fail in the field.
"Users often do not realize the extent to which software determines many of the key functional and performance characteristics of the system until something goes wrong."
– FDA
