Architecture pattern for connected medical devices - Imaging Pillar

This document provides guidance to health and care organisations who are either planning to, or have embarked on, segmenting their network. Its purpose is to help you improve your network’s overall state of cybersecurity readiness or ‘posture’, with emphasis on segmenting medical devices connected to your clinical network.

It will assist you to meet the 'resilient network and systems' outcomes of the National Cyber Security Centre (NCSC) Cyber Assessment Framework (CAF) guidance and the segmentation requirements within the Data Security and Protection Toolkit (DSPT).

Additionally, the document:

1. Provides an overview of the 5 diagnostics pillars within the NHS.
2. Provides guidance on segmenting components identified in the end-to-end data flow of the imaging diagnostics pillar.
3. Gives specific guidance in the imaging context for following the segmentation design process as recommended in Network segmentation - An introduction for health and care organisations.
4. Recommends potential architectural patterns for segmenting genomics diagnostic medical devices connected to an organisation's clinical network.
5. Provides a sample network segmentation pattern using virtual local area network (VLAN) as a segmentation method.
6. Helps organisations to comply with principles B4 and B5 of the NCSC CAF.
7. Provides segmentation requirements within DSPT.