How do you make an inanimate object smart? You put a chip in it! And then you connect it to the internet! These chips run embedded operating systems. And because they are embedded in power grid equipment, medical equipment and appliances, updates are problematic. The Internet of Things (IoT) is growing at a rate 10x that of standard computers (a typical hospital system may have 4-5x as many smart connected medical devices as computers). The “Dreaded Embedded” is the proliferation of vulnerabilities associated with these devices. What are the security and privacy concerns? What about FDA and other regulatory compliance? How do we deal with these devices as part of an IS program?
- What are the security and privacy concerns of IoT/embedded devices?
- What are the FDA and other regulatory compliance considerations?
- How do we build this into an infosec program?
About Barry Caplin
Barry Caplin is a leadership partner with Gartner, providing trusted advice to CISOs and senior security professionals. Caplin has twice been the first CISO for an organization and has over 35 years of experience in technology, the last 25 focused on information security including over 14 years as a CISO. He holds an MS in applied mathematics from Virginia Polytechnic Institute (Virginia Tech), and CISSP, ISSMP, CISA, and CISM certifications. Caplin frequently speaks on a variety of security, safety and privacy topics, particularly staying safe with the internet, social media, and mobile devices.