Category

Blog
13
Nov

Product Software Versus Tool Software

November 13, 2021,
When considering software process and software validation requirements for product software versus tool software, it can be very confusing and challenging.  We have created a job aid that can help facilitate the discussion of the differences between the two.  Available to our premium (or higher) level subscribers. The QSR which requires that “when computers or...
Read More
03
Nov

2021 FDA Draft Software Premarket Submission Guidance

November 3, 2021,
Today, the U.S. Food and Drug Administration (FDA) issued the draft guidance: Content of Premarket Submissions for Device Software Functions. The draft guidance is intended to reflect FDA’s most current thinking on the recommended documentation sponsors should include in premarket submissions for FDA’s evaluation of the safety and effectiveness of device software functions, including both...
Read More
29
Oct

FY2022 SW Related Guidance

October 29, 2021,
“From my 25 years at the agency, I completely understand that FDA CDRH guidance development, approval and publication is complex, time-consuming work. I often said it may be compared to threading 1000 needles simultaneously. It requires significant time and energy from many hard-working, dedicated professionals to even reach the first goal of published draft guidance....
Read More
27
Oct

MDIC Threat Modeling Playbook Update

October 27, 2021
The Medical Device Innovation Consortium (MDIC) recently partnered with the MITRE Corporation, Adam Shostack, and the FDA to host a webinar regarding the soon to be released “Playbook for Threat Modeling Medical Devices.” The playbook was created during a series of bootcamps held by the team over the past year and the webinar provided a...
Read More
27
Oct

FDA announces new guidance documents

October 27, 2021,
The FDA CDRH announced the guidance documents they intend to publish in FY2022. They also announced their intention to finalize, withdraw, re-open the comment period, or re-issue a revised draft guidance for 80 percent of draft guidance documents within 3 years of the close of the comment period, and within 5 years of the close...
Read More
29
Sep

September 2021 Standards Navigator Report

September 29, 2021,
This September 2021 Standards Navigator Report content is only available to Standards Navigator subscribers. See our Subscribe page for information on subscriptions. SoftwareCPR® Standards Navigator provides information and tools related to standards that play a significant role in health software and software intensive medical devices.  In addition to information on existing standards, our report keeps you...
Read More
23
Sep

FDA Digital Transformation

September 23, 2021
FDA’s Digital Transformation and the regulation of Medical Device Cybersecurity? I read the recent FDA post that discussed the FDA’s Digital Transformation: “Today, the U.S. Food and Drug Administration announced the reorganization of the agency’s information technology (IT), data management and cybersecurity functions into the new Office of Digital Transformation (ODT).” Then I was reading...
Read More
30
Aug

SOUP – Can’t Live Without It!

August 30, 2021
Software of Unknown Provenance SOUP.  It is likely that you are familiar with the acronym, SOUP, in relation to medical device and Health IT software.  The medical device software standard IEC 62304, defines SOUP as a “software item that is: already developed and generally available and that has not been developed for the purpose of being...
Read More
28
Jul

July 2021 Standards Navigator Report

July 28, 2021,
This July 2021 Standards Navigator Report content is only available to Standards Navigator subscribers. See our Subscribe page for information on subscriptions. SoftwareCPR® Standards Navigator provides information and tools related to standards that play a significant role in health software and software intensive medical devices.  In addition to information on existing standards, our report keeps you...
Read More
25
Jul

Software Validation of Cloud Based Tools

July 25, 2021,
Most medical device manufacturers use many, many software programs, systems, or services to automate quality system This software is not to be confused with product software - that is, software that runs as part of a medical device.  Medical device in this context could be custom hardware devices or Software as a Medical Device (SaMD)....
Read More
25
Jul

General Principles of Software Validation

July 25, 2021,
One of the most important references in creating a software development lifecycle process to assure software quality is the FDA guidance document, “General Principles of Software Validation.”  This guidance document has been around for many years.  The current version, 2.0, was released in 2002.  To many in the industry, this guidance is simply referred to...
Read More
23
Jul

Retaining Training Data Sets

July 23, 2021,
As the use of Artificial Intelligence (AI) and machine learning methods expand in medical devices and HealthIT software, an oft asked question is whether the data sets used for training should be retained as part of the design history file (DHF) or other long term storage mechanisms.  SoftwareCPR partners Alan Kusinitz, Sherman Eagles, John Murray,...
Read More
19
Apr

FDA Modifying Medical Device Classifications

April 19, 2021
The FDA is officially modifying medical device classifications for some software functions. On April 19, 2021, the agency published a “final” rule that updates eight classification regulations by amending these regulations to exclude software functions that no longer fall within the device definition under 201(h) of the FD&C Act. With this final rule, FDA is amending the...
Read More
04
Apr

Challenges and benefits of the microservice architectural style

April 4, 2021
An excellent overview of the challenges and benefits of the Microservices architectural style of software application development.  While many of the factors discussed by the author (Dr. André Fachat, published January 30, 2019), these same factors can affect the safety and efficacy of a medical devices using this style.  The article consists of two parts:...
Read More
22
Jan

January 2021 Standards Navigator Report

January 22, 2021,
This January 2021 Standards Navigator Report content is only available to Standards Navigator subscribers.  See our Subscribe page for information on subscriptions. SoftwareCPR® Standards Navigator provides information and tools related to standards that play a significant role in health software and software intensive medical devices. In addition to information on existing standards, SoftwareCPR Standards Navigator keeps you...
Read More
18
Dec

December 2020 Standards Navigator Report

December 18, 2020,
This December 2020 Standards Navigator Report content is only available to Standards Navigator subscribers.  See our Subscribe page for information on subscriptions. SoftwareCPR Standards Navigator Report provides information and tools related to standards that play a significant role in health software and software intensive medical devices. In addition to information on existing standards, SoftwareCPR Standards...
Read More
04
Dec

View draft revisions of FDA guidance?

December 4, 2020
Is it possible to view draft revisions of FDA guidance documents when they are a “work in progress,” or are they only become available once published as draft?  This is a frequent question that I have heard. However, the FDA does not typically provide copies or drafts of “works in progress” for those items that...
Read More
23
Nov

ISO 14971 Updated in 2019 Release

November 23, 2020,
This content is only available to our Premium subscribers. See our Subscribe page for information on subscriptions. ISO 14971 was updated and released in 2019.  We previously discussed the internal debate regarding ISO 14917 in this post ISO 14971 versus the EU Commission. There are several items to consider with the new update: Section 10.1 - “The manufacturer...
Read More
17
Nov

Compliance and Agile – Another Common Hurdle

November 17, 2020
Compliance and Agile In a prior blog, we discussed a common hurdle to achieving agile benefits: focusing on isolated software process changes and not considering all four organizational factors. Another common hurdle to agile success is thinking only about making agile “compliant.” You will miss the full power of agile if you do not consider...
Read More
17
Nov

Draft guidance on EMC

November 17, 2020
The Food and Drug Administration (FDA or Agency) is announcing the availability of the draft guidance on EMC entitled ‘‘Electromagnetic Compatibility (EMC) of Medical Devices.’’ This new “draft” guidance document is intended to recommend information that should be provided in a premarket submissions to demonstrate electromagnetic compatibility (EMC) for electrically powered medical devices and medical...
Read More
11
Nov

Celebrating Veterans Day!

November 11, 2020
At SoftwareCPR today, we honor our consultants that are also veterans who served in our US military! John Murray – US Navy Mike Russell – US Air Force Greg Sandoe – US Marine Corps Jordan Pate – US Army Paul Felten – US Army Thank you for your service!
Read More
09
Nov

Distinguishing Significant and Nonsignificant Risk Devices

November 9, 2020
Why is a SR or NSR Designation important? The FDA guidance document, “Information Sheet Guidance For IRBs, Clinical Investigators, and Sponsors: Significant Risk and Nonsignificant Risk Medical Device Studies,” sheds some light on the Investigational Device Exemptions (IDE) regulations of 21 CFR 812. The IDE regulations describe significant risk (SR), nonsignificant risk (NSR), and exempt...
Read More
09
Nov

CDRH Proposed Guidance Updates

November 9, 2020
FDA released their CDRH Proposed Guidance Updates that includes a significant amount of “software related” guidance in FY 2021. There are four separate guidance documents listed for publication in FY 2021. IMO that is a fairly large commitment from the agency and I will look forward to reading about the agency’s “current thinking” on these...
Read More
30
Oct

Understanding OTS and SOUP

October 30, 2020
Understanding OTS and SOUP is very important in every lifecycle stages of medical device and HealthIT software development.  In the late 1990’s, the US FDA first published guidance documentation on the use of Off-The-Shelf (OTS) software in medical devices (or sometimes referred to as “OTSS”).  At that time, OTSS generally accounted for a very small...
Read More
14
Oct

LIS2 Communication and Stability Issues

October 14, 2020
Our internal cybersecurity expert Gwen contributed the following. The Use of LIS2 In Medical Devices LIS2-A2 is widely used in laboratory devices as a standard practice for Healthcare Delivery Organizations (HDOs). The LIS and LIS2 communication protocol standards published nearly two decades ago have often been used in medical device network systems due to their...
Read More
12
Oct

Google Health AI – Success Story?

October 12, 2020
In 2018, Google Health began a program in Thailand to screen for diabetic retinopathy using artificial intelligence (AI). The AI was designed to analyze photos of diabetic patients’ eyes to detect signs of eye disease. The AI was promising in theory – during testing, it was 90% accurate in detecting diabetic retinopathy in eye scans,...
Read More
30
Sep

September 2020 Standards Navigator Report

September 30, 2020,
This September 2020 Standards Navigator Report content is only available to Standards Navigator subscribers.  See our Subscribe page for information on subscriptions. SoftwareCPR Standards Navigator Report provides information and tools related to standards that play a significant role in health software and software intensive medical devices. In addition to information on existing standards, SoftwareCPR Standards...
Read More
14
Sep

Digital Health pre-cert program update

September 14, 2020
On September 14, 2020 the Digital Health Team at FDA provided a 2020 Update on the Software Precertification Pilot Program. The announcement is a short 8-page document. The document provides the details that are driving program development. It contains a considerable amount of information that may take a few reads to fully understand. On my...
Read More
22
Aug

An Intro to Medical Device Clinical Studies

August 22, 2020
Why are clinical studies necessary? Medical device clinical studies provide evidence for a PMA submission. Under 21 CFR 860.7, the FDA relies only on “valid scientific evidence” to determine whether there is reasonable assurance that a device is safe and effective. Valid scientific evidence can originate from a variety of sources, including well-controlled studies. Even...
Read More
13
Aug

Reviewing What We Know About LOC in Medical Devices

August 13, 2020
Remember the 2005 guidance document, Guidance for the Content of Premarket Submissions for Software Contained in Medical Devices? In 2020 that guidance is as relevant as ever, and it can be useful to review what we know about the FDA’s expectations regarding Level of Concern (LOC) in medical devices. LOC is important if for no...
Read More
28
Jul

Understanding the Q-Sub Guidance

July 28, 2020
Do you understand the Q-Sub Guidance? The FDA issued the guidance document Requests for Feedback and Meetings for Medical Device Submissions: The Q-Submission Program in 2019, but it has taken some time for the industry to understand all the facets of the program. The guidance covers a wide range of FDA submissions – IDE/PMA/HDE applications, de novo...
Read More
26
Jul

A common hurdle to achieving agile benefits

July 26, 2020
“Agile” remains a hot topic in general, and “compliant agile” is a goal in many medical (and other regulated) companies. However, “agile” also remains difficult and elusive for many. This article will examine one of the most common hurdles to achieving agile benefits from well-intentioned initiatives. First, let’s address agile and medical device development in...
Read More
17
Jul

July 2020 Standards Navigator Report

July 17, 2020,
This July 2020 Standards Navigator Report content is only available to Standards Navigator subscribers.  See our Subscribe page for information on subscriptions. SoftwareCPR Standards Navigator Report provides information and tools related to standards that play a significant role in health software and software intensive medical devices. In addition to information on existing standards, SoftwareCPR Standards...
Read More
17
Jul

Checklist to Qualify for a Real-Time PMA Supplement

July 17, 2020,
This content is only available to our Premium subscribers.  See our Subscribe page for information on subscriptions. What is a Real-Time PMA Supplement? Section 737(4)(D) of the Federal Food, Drug, and Cosmetic Act defines a Real-Time PMA Supplement as: “a supplement to an approved premarket application or premarket report under section 515 that requests a...
Read More
12
Jul

Software CAPA Can be Challenging

July 12, 2020,
This content is only available to our Premium subscribers.  See our Subscribe page for information on subscriptions. You are likely aware of the CAPA process overall and how it fits in to the quality management system for a medical device manufacturer or supplier.  Just the name itself, corrective and preventive action, describes one of the...
Read More
24
Feb

February 2020 Standards Navigator Report

February 24, 2020,
This February 2020 Standards Navigator Report content is only available to Standards Navigator subscribers.  See our Subscribe page for information on subscriptions. SoftwareCPR Standards Navigator Report provides information and tools related to standards that play a significant role in health software and software intensive medical devices. In addition to information on existing standards, SoftwareCPR Standards...
Read More
23
Jan

FDA GPSV Traceability Expectations

January 23, 2020,
This "FDA GPSV Traceability Expectations" post is only available to Premium subscribers. See our Subscribe page for information on subscriptions. Going way back to the late 1990's, FDA had an expectation that safe and effective software would require a well thought out development lifecycle that includes many activities designed to ensure the correctness and robustness...
Read More
29
Dec

December 2019 Standards Navigator Report

December 29, 2019,
This content is only available to Standards Navigator subscribers.  See our Subscribe page for information on subscriptions. SoftwareCPR Standards Navigator Report provides information and tools related to standards that play a significant role in health software and software intensive medical devices. In addition to information on existing standards, SoftwareCPR Standards Navigator keeps you up to date...
Read More
19
Dec

Challenges with Software Risk Analysis

December 19, 2019,
ISO 14971 Risk Analysis Identifying safety risks in medical devices is a challenging and laborious process.  The process standard, ISO 14971, is a systematic, total product risk management lifecycle process to identify, control, and evaluate risk, where risk is defined as the combination of severity of the harm (to people, property, or environment) and probability...
Read More
19
Dec

Looking Forward to Teaching Our 62304 Course

December 19, 2019
I am looking forward to teaching the IEC 62304 Course February 2020 with Brian Pate in Sunnyvale CA. https://events.eventzilla.net/e/2020-softwarecpr-62304-and-emerging-software-standards-training-course–sunnyvale-ca-2138757731 For 15 years I taught the AAMI Software Validation Course with Alan Kusinitz.  These days I have shifted gears to teach the SoftwareCPR 62304 course with Brian Pate. There is a major shift in my perspective between...
Read More
14
Nov

FDA’s Digital Health “Ask A Question” Portal

November 14, 2019
Do you have a question about FDA Digital Health Regulatory Policy?  FDA’s Center for Devices and Radiological Health has a resource to help. I know from personal experience that the Digital Health Team (DHT) at FDA focuses a lot of energy and effort on answering these questions in an effective and efficient manner. During my...
Read More
24
Oct

2018 FDA-NCATS Report on Unmet Medical Device Needs

October 24, 2019
The FDA and the NIH National Center for Advancing Translational Sciences (NCATS)/Office of Rare Diseases Research (ORDR) conducted this needs assessment to better understand unmet medical device needs for rare diseases – ultimately to raise public awareness of these unmet needs.  Let this motivate us all to explore, push limits, innovate, and invent.  Onward software...
Read More
14
Oct

October 2019 Standards Navigator Report

October 14, 2019,
This content is only available to Standards Navigator subscribers.  See our Subscribe page for information on subscriptions. SoftwareCPR Standards Navigator provides information and tools related to standards that play a significant role in health software and software intensive medical devices. In addition to information on existing standards, SoftwareCPR Standards Navigator keeps you up to date on...
Read More
14
Sep

Software Requirements Lifecycle

September 14, 2019
For anyone involved in software development, the importance of software requirements cannot be minimized. Software requirements provide the definition and explanation of “what the software should do” and “how the software should behave.” The software engineers and developers use the requirements as input to the software design and coding process. The test developers also use...
Read More
07
Aug

Breakdown of FDA’s Medical Device User Fees

August 7, 2019
Premarket Notifications (510(k)s), Premarket Approval Applications (PMAs), Premarket Reports (PMRs), notices, and supplements all have associated fees to be paid to the FDA before they will review a medical device product. The 2019 Medical Device User Fee Amendments (MDUFA) are listed at 2019 MDUFA. If the FDA determines that a manufacturer is a “small business”...
Read More
06
Aug

FDA Expectations for Requirements

August 6, 2019
Some thoughts on Requirements … using the General Principles of Software Validation to help. Many times we struggle with creating software requirements and documenting them.  The FDA General Principles of Software Validation-Final Guidance helps set the FDA expectations in this area.  Section 4.1 of the guidance states: “A documented software requirements specification provides a baseline for both...
Read More
23
Jul

July 2019 Standards Navigator Report

July 23, 2019,
This content is only available to Standards Navigator subscribers.  See our Subscribe page for information on subscriptions. SoftwareCPR Standards Navigator provides information and tools related to standards that play a significant role in health software and software intensive medical devices. In addition to information on existing standards, SoftwareCPR Standards Navigator keeps you up to date on...
Read More
10
Jul

Health Canada releases new cybersecurity guidance

July 10, 2019
Health Canada released the full guidance document, Pre-market Requirements for Medical Device Cybersecurity. It can be viewed at:  https://www.canada.ca/en/health-canada/services/drugs-health-products/medical-devices/application-information/guidance-documents/cybersecurity.htm It includes requirements such as: “Risk management is required for all medical devices throughout their life-cycle. Manufacturers should incorporate cybersecurity into the risk management process for every device that consists of or contains software. Manufacturers are...
Read More
26
Jun

DevOps and SaMD Practices

June 26, 2019,
This content is only available to Premium subscribers.  See our Subscribe page for information on subscriptions. As more "software as a medical device" (SaMD) applications are developed and marketed, there has been an increased focus on what activities and documentation are required for compliance with US medical device regulations and applicable ISO standards.  Along with...
Read More
18
Jun

NASA Safety Culture Handbook

June 18, 2019
Another useful reference for establishing a safety culture in your software organization. “The purpose of this Handbook is to define the NASA Safety Culture Program and to provide guidance in the development and implementation—sustainment, growth, and practice—of Safety Culture at the Center level. It defines the NASA Safety Culture Model, describes the Safety Culture Survey...
Read More
1 2 3 4 5

SoftwareCPR Training Courses:

IEC 62304 and other emerging standards for Medical Device and HealthIT Software

Our flagship course for preparing regulatory, quality, engineering, operations, and others for the activities and documentation expected for IEC 62304 conformance and for FDA expectations. The goal is to educate on the intent and purpose so that the participants are able to make informed decisions in the future.  Focus is not simply what the standard says, but what is meant and discuss examples and approaches one might implement to comply.  Special deep discount pricing available to FDA attendees and other regulators.

3-days onsite with group exercises, quizzes, examples, Q&A.

Instructor: Brian Pate

Next public offering:  June 5-7, 2024
Boston, MA

Email training@softwarecpr.com to request a special pre-registration discount.  Limited number of pre-registration coupons.

Registration Link:

Register Now

 

 

Being Agile & Yet Compliant (Public or Private)

Our SoftwareCPR unique approach to incorporating agile and lean engineering to your medical device software process training course is now open for scheduling!

  • Agile principles that align well with medical
  • Backlog management
  • Agile risk management
  • Incremental and iterative software development lifecycle management
  •  Frequent release management
  • And more!

2-days onsite (4 days virtual) with group exercises, quizzes, examples, Q&A.

Instructors: Mike Russell, Ron Baerg

Next public offering: Tuesday, January 23 through Friday, January 26 from at 11 am – 3 pm EST

Virtual via Zoom

Registration Link:

Register Now

 

 

Medical Device Cybersecurity (Public or Private)

This course takes a deep dive into the US FDA expectations for cybersecurity activities in the product development process with central focus on the cybersecurity risk analysis process. Overall approach will be tied to relevant standards and FDA guidance documentation. The course will follow the ISO 14971:2019 framework for overall structure but utilize IEC 62304, IEC 81001-5-1, and AAMI TIR57 for specific details regarding cybersecurity planning, risk characterization, threat modeling, and control strategies.

2-days onsite with group exercises, quizzes, examples, Q&A.

Instructor: Dr Peter Rech, 2nd instructor (optional)

Next public offering:  TBD

Corporate Office

15148 Springview St.
Tampa, FL 33624
USA
+1-781-721-2921
office@softwarecpr.com
Partners located in the US (CA, FL, MA, MN, TX) and Canada.