Device
Security
As biotechnology evolves, so do cyber threats. This effort tackles vulnerabilities in lab instruments and networked devices, crafting easy-to-use reference guides. We work for a future where security is achievable, understandable, and used by every industry leader - from the front-line to the investors.
About this work
Under the leadership of Vincent Cervone, of Purple Raven Cybersecurity, and Jess Smith, PhD, of Pacific Northwest National Laboratory, the Device Security Working Group at BIO-ISAC published Fortifying the Bioeconomy, an in-depth resource about shared responsibility in hardware and software lifecycle management within the bioeconomy.
Fortifying the Bioeconomy
This series responds to many recommendations from the multi-day workforce training event hosted by Johns Hopkins Applied Physics Laboratory and BIO-ISAC, for U.S. federal agencies. The post-event report made several recommendations, including a call for accessible, easy-to-use tools for equipment acquisition, device disposal, and vendor contracting. For more, read, Going Viral: Bioeconomy Defense.
The flagship publication of the series, Fortifying the Bioeconomy, reviews the shared responsibility model needed to truly defend biotech equipment and offers instruction on how to insert shared responsibility into contracts when acquiring instruments and equipment.
The next part of the series includes the launch of the Biosecurity Evaluation Questionnaire, or BSEQ, designed to walk decision makers through the security considerations of the equipment acquisition process, with a focus on building stronger expectations from manufacturers and firms when it comes to instrument security.
The series also includes the Instrument Disposal Guide, an overview of how to prepare to remove instruments from a manufacturing site and safely remove any data captured on the equipment during its lifecycle.