Blog

Timely, insightful, and relevant thoughts, opinions, and discussion on FDA software validation, 62304 compliance, medical device software standards, updates impacting medical device and HealthIT software development, and sundry subjects from our Partners and staff.

23
Mar

Effectively Communicating to FDA

March 23, 2023
Effectively Communicating to FDA – being able to appropriately articulate what your software function is intended to do or intended to provide is – the foundation – the corner stone – the linchpin to navigating the correct path, investing your resource wisely, and defending your decisions now and into the future.  Solid foundations lead to solid futures....
Read More
14
Mar

Unit Testing

March 14, 2023
I cannot agree more … “The more you can divide up the behavior of your app into components, the more effectively you can test that the behavior of your code meets the reference standards in all particulars as your project grows and changes. For a large project with many components, you’ll need to run a large number of tests to test...
Read More
17
Nov

FDA Updated Software Guidance

November 17, 2022
In September 2022, FDA Updated the Software Guidance Policy for Device Software Functions and Mobile Medical Applications.  Last revised in September 2019, the policy is intended to clarify FDA’s regulatory oversight on software functions, including those used on mobile platforms and general-purpose computing platforms as well as software in the function or control of a...
Read More
17
Nov

Understanding Risk with Medical Devices

November 17, 2022
On November 15, 2022, I had the pleasure to log in to a “live” FDA CDRH Industry Basics Seminar on Understanding Risk with Medical Devices.  You can view the workshop at this link: https://fda.yorkcast.com/webcast/Play/4aecf454d2d54039a1d5a6a3001d78c31d I did enjoy the materials presented and I do think the presenters Joseph and Tonya did a great job. I would recommend...
Read More
15
Nov

FDA Updates Cybersecurity Playbook

November 15, 2022
FDA Updates Cybersecurity Playbook for Health Care Organizations The healthcare sector knows how to prepare for and respond to natural disasters. It is less prepared, however, to handle cybersecurity incidents, particularly those involving medical devices.  With healthcare-related cyber incidents growing in size and scope, preparedness before a cyber event takes place with a strong, well-exercised,...
Read More
11
Nov

Thoughts on Metrics

November 11, 2022
Just a few thoughts on metrics … specifically software metric.  A software metric defines a standard way of measuring some attribute of the software development process or an attribute of a software component. A software metric allows us to compare and evaluate one process or component with another, and plan to improve quality of a...
Read More
24
Oct

SaMD Risk Management Training

October 24, 2022
A course dedicated to “SaMD Risk Management Training?” Yes and much more! More discussion on Risk Management Training between our General Manager, Brian Pate, and our Partner, Dr. Peter Rech, regarding our January 2023 public training course on the application of ISO 14971 and IEC 62304 to system risk analysis and software risk analysis.  Our...
Read More
10
Oct

Dr Rech on ISO 14971 Updates

October 10, 2022
I recently spoke with Dr. Peter Rech about the 2019 update to ISO 14971 as he and I prepare for our upcoming public training course on January 9-11, 2023, in Tampa, Florida USA.  Registration information can be found at this post: 14971 Risk Management Training Course If you would like more information on applying IEC 62304...
Read More
27
Sep

FDA Software Precertification Pilot Ends

September 27, 2022
In September 2022, the FDA Software Precertification Pilot Ends, or has officially “completed” the Software Precertification (Pre-Cert) Pilot Program.  See: https://www.fda.gov/medical-devices/digital-health-center-excellence/digital-health-software-precertification-pre-cert-pilot-program?utm_medium=email&utm_source=govdelivery The pilot explored innovative approaches to regulatory oversight of medical device software developed by organizations that have demonstrated a robust culture of quality and organizational excellence and who are committed to monitoring real-world performance of...
Read More
25
Jul

Non-Device Software Functions

July 25, 2022
What are non-device software functions according to the FDA?  The 21st century cures act excluded certain types of software.  The term device, as defined in section 201(h), shall not include a software function that is intended— (A) for administrative support of a health care facility, including the processing and maintenance of financial records, claims or...
Read More
Load More

SoftwareCPR Training Courses:

Risk Management (Public or Private)

Our newly updated ISO 14971:2019 Medical Device Risk Management, A Software Organization’s Perspective training course is now open for scheduling!

  • Coverage of ISO 14971:2019, IEC 62304; amd1, and IEC/TR 80002-1.
  • System level hazards analysis – mapping to software, cybersecurity, and usability
  • Why FMEA is incomplete for medical device risk management.
  • How to perform software hazards analysis.
  • And more!

3-days onsite with group exercises, quizzes, examples, Q&A.

Instructors: Dr. Peter Rech, Brian Pate

Next public offering:  TBD

 

Being Agile & Yet Compliant (Public or Private)

Our SoftwareCPR unique approach to incorporating agile and lean engineering to your medical device software process training course is now open for scheduling!

  • Agile principles that align well with medical
  • Backlog management
  • Agile risk management
  • Incremental and iterative software development lifecycle management
  •  Frequent release management
  • And more!

2-days onsite with group exercises, quizzes, examples, Q&A.

Instructors: Mike Russell, Ron Baerg

Next public offering:  TBD

 

Medical Device Cybersecurity (Public or Private)

This course takes a deep dive into the US FDA expectations for cybersecurity activities in the product development process with central focus on the cybersecurity risk analysis process. Overall approach will be tied to relevant standards and FDA guidance documentation. The course will follow the ISO 14971:2019 framework for overall structure but utilize IEC 62304, IEC 81001-5-1, and AAMI TIR57 for specific details regarding cybersecurity planning, risk characterization, threat modeling, and control strategies.

2-days onsite with group exercises, quizzes, examples, Q&A.

Instructor: Dr Peter Rech, 2nd instructor (optional)

Next public offering:  TBD

 

IEC 62304 and other emerging standards for Medical Device and HealthIT Software (Public or Private)

Our flagship course for preparing regulatory, quality, engineering, operations, and others for the activities and documentation expected for IEC 62304 conformance and for FDA expectations. The goal is to educate on the intent and purpose so that the participants are able to make informed decisions in the future.  Focus is not simply what the standard says, but what is meant and discuss examples and approaches one might implement to comply.  Special deep discount pricing available to FDA attendees and other regulators.

3-days onsite with group exercises, quizzes, examples, Q&A.

Instructor: Brian Pate, 2nd instructor (optional)

Next public offering:  TBD

 

Corporate Office

15148 Springview St.
Tampa, FL 33624
USA
+1-781-721-2921
office@softwarecpr.com
Partners located in the US (CA, FL, MA, MN, TX) and Canada.