Ortho’s Commitment to Cybersecurity

Ortho Clinical Diagnostics takes seriously our responsibility to maintain the security of information systems, products, services and data. Ortho is committed to protecting patient privacy and data security and recognizes the legal and ethical obligations in all customer interactions.

Cybersecurity threats may include the following:

Ransomware

A type of malicious software designed to block access to a computer system until a sum of money is paid.

Virus

Piece of code that is capable of copying itself and typically has detrimental effect, such as corrupting the system or destroying data.

Breach

An incident in which sensitive, protected or confidential data has potentially been viewed, stolen or used by an individual unauthorized to do so.

Ortho maintains a clearly defined set of information security policies and procedures that are designed to maintain the confidentiality, integrity, privacy, and availability of all data and systems within the company’s environment.


“At Ortho we believe that 'Every Test is a Life' and our security commitment spans across all of our products. We will always strive to provide products that exceed regulatory requirements and customer expectations.”
-Chris Smith, CEO


Our cybersecurity program spans the entire product lifecycle, from supplier and partner risk assessments, integrated security controls, secure coding practices, vulnerability and patch management, ongoing employee training, data storage and disposal, monitoring, and incident response. 

Ortho performs cybersecurity reviews as we develop and update our products to ensure we include appropriate controls. Our program also includes internal and external testing to ensure that our products are aligned with all current and relevant cybersecurity standards, including FDA pre- and post-market guidance.


Ortho stays current with the changing threat landscape

Cyber threats continue to evolve. Ortho’s active participation in major security conventions and industry benchmark training programs, combined with professional memberships, engagement with regulatory agencies, and subscriptions to national alert systems keep us on the forefront of healthcare cybersecurity.

Through continual analysis and collaboration with industry experts, we strive to identify new threats and develop solutions to mitigate them before they impact your business.