FDA CDRH standards recognition IEC 601-1-4

FDA CDRH Office of Device Evaluation standards recognition statement for ” IEC 60601-1-4:1996, Medical electrical equipment – Part 1: General requirements For safety; 4. Collateral Standard: Programmable electrical medical systems”. FDA did not choose to recognize this standard for software submissions or even outright for risk management. They did issue a recognition statement explaining their position and conditions under which this standard might be used. An excerpt of their comments are “Portions of this standard related to risk estimation do not appropriately address failures of a systematic nature (hardware design failures and all software failures). The risk associated with a random failure is assessed by considering both the severity of the hazard caused by the failure and the rate of its occurrence. Unlike for random failure, however, the probability or likelihood of systematic failure is impossible to predict. Consequently, hazards associated with risk-related functions subject to systematic failure should be managed based on the severity of the hazard resulting from failure and the assumption that the failure will occur. Hazard management should focus on the mitigation or elimination of hazards that adversely affect patient safety. Hazard analysis should begin with the identification of system requirements and continue throughout the product life cycle. Where applicable, design features should be incorporated that prevent single component failures from adversely affecting patient safety. When reviewing programmable electrical medical systems, reviewers may request documentation from the risk management file described in IEC 60601-1-4, for example, system requirement specifications, hazard analysis, hazard mitigation features, and validation reports. In addition, because conformity to the IEC 60601-1-4 standard may not be sufficient for purposes of demonstrating safety for regulatory submissions, manufacturers should be encouraged to contact the appropriate ODE reviewing group to determine the applicability of this standard for a specific medical device. “

SoftwareCPR Training Courses:

Being Agile & Yet Compliant (Public)

Our SoftwareCPR unique approach to incorporating agile and lean engineering to your medical device software process training course is now open for registration!

  • Agile principles that align well with medical
  • Backlog management
  • Agile risk management
  • Incremental and iterative software development lifecycle management
  •  Frequent release management
  • And more!

3 days virtual (Zoom) with group exercises, quizzes, examples, Q&A.

Lead Instructor: Mike Russell

Next public offering: Dec 3, 4, & 5, 2024 – 12:00 pm to 5:00 pm CET

Register Now


 

IEC 62304 and other emerging standards for Medical Device and HealthIT Software

Our flagship course for preparing regulatory, quality, engineering, operations, and others for the activities and documentation expected for IEC 62304 conformance and for FDA expectations. The goal is to educate on the intent and purpose so that the participants are able to make informed decisions in the future.  Focus is not simply what the standard says, but what is meant and discuss examples and approaches one might implement to comply.  Special deep discount pricing available to FDA attendees and other regulators.

3-days onsite with group exercises, quizzes, examples, Q&A.

Instructor: Brian Pate

Next public offering:  TBD

Call or email now to schedule a private, in-house class. The fall schedule is filling up!

Email training@softwarecpr.com to request a special pre-registration discount.  Limited number of pre-registration coupons.

Registration Link:

TBD

 


 

Medical Device Cybersecurity (Public or Private)

This course takes a deep dive into the US FDA expectations for cybersecurity activities in the product development process with central focus on the cybersecurity risk analysis process. Overall approach will be tied to relevant standards and FDA guidance documentation. The course will follow the ISO 14971:2019 framework for overall structure but utilize IEC 62304, IEC 81001-5-1, and AAMI TIR57 for specific details regarding cybersecurity planning, risk characterization, threat modeling, and control strategies.

2-days onsite with group exercises, quizzes, examples, Q&A.

Instructor: Dr Peter Rech, 2nd instructor (optional)

Next public offering:  TBD

Corporate Office

15148 Springview St.
Tampa, FL 33624
USA
+1-781-721-2921
Partners located in the US (CA, FL, MA, MN, TX) and Canada.