Regulatory change is reshaping how healthcare organizations approach operational technology security. With the adoption of IEC 62443 as the governing framework for healthcare OT, hospitals and pathology providers must transition from legacy standards to a more structured, risk-based model. But applying industrial cybersecurity principles in clinical environments is not straightforward. Legacy serial-connected devices, vendor-controlled systems and strict therapeutic regulations limit traditional patching and control approaches, while the stakes remain exceptionally high.

In this session, Colin Renouf of Healius, shares a practical road map for adapting IEC 62443 to healthcare OT, using a real-world pathology case study to demonstrate how to translate zones, conduits and restricted data flows into clinical settings.

In this insightful session, Renouf will also discuss:

• How to translate IEC 62443 into practical healthcare OT architecture;
• How to manage third-party access, insider threats and legacy device constraints;
• How to build a maturity road map that aligns compliance with patient safety.