What MedTech Can Learn from the Casino Industry with Melissa Aarskaug

What MedTech Can Learn from the Casino Industry with Melissa Aarskaug

For years, cybersecurity has been viewed as an IT responsibility. Today's threat landscape demands something very different. In this episode of the Med Device Cyber Podcast, Christian Espinosa is joined by Melissa Aarskaug, a cybersecurity executive with extensive experience protecting highly regulated industries, including banking and casino gaming. Melissa shares lessons from an industry where operations run 24 hours a day, every day of the year, and where even a few minutes of downtime can have enormous financial consequences. The conversation explores why attackers increasingly target regulated industries, how cyber resilience differs from compliance, and why cybersecurity has evolved into a leadership issue rather than simply an IT function. Melissa explains why organisations should focus less on preventing every possible attack and more on ensuring the business can continue operating when incidents occur. Christian and Melissa also discuss how medical device manufacturers can learn from the gaming industry's approach to resilience, the growing role of AI in both cyber defence and cybercrime, why cybersecurity should be integrated into quality management systems, and how leadership teams can better prioritise cyber risk across their organisations. Whether you're a MedTech founder, cybersecurity professional, healthcare leader, or product developer, this episode offers practical insights into building more resilient organisations in an increasingly connected world. Episode Breakdown * 00:00 Introduction * 01:09 Lessons from protecting the gaming industry * 01:58 Why attackers target regulated industries * 05:22 Cybersecurity is about pressure, not industries * 06:07 Compliance versus cyber resilience * 08:08 Medical devices and connected ecosystems * 12:29 The famous fish tank cyberattack * 15:03 FDA expectations versus hospital expectations * 16:04 AI, cyber maturity and the future of security * 17:25 Four priorities every leader should focus on * 21:24 Why penetration tests often fail to create change * 24:38 FDA compliance and designing security from the beginning * 26:48 Cyber insurance isn't a silver bullet * 32:21 Cybersecurity is becoming part of quality * 33:26 Why cybersecurity is moving beyond IT * 37:42 Final thoughts and key takeaways Find Melissa Aarskaug here on LinkedIn: https://www.linkedin.com/in/melissa-aarskaug/ The Med Device Cyber Podcast is brought to you by Blue Goat Cyber, cybersecurity experts providing essential security solutions for the medical device industry. Learn more by visiting https://bluegoatcyber.com. If you're interested in our services or partnering with us, schedule a Discovery Session: https://go.bluegoatcyber.com/meetings/blue-goat-cyber/discovery-session Christian Espinosa is the CEO and founder of Blue Goat Cyber. Christian Espinosa on LinkedIn: https://www.linkedin.com/in/christianespinosa/ Blue Goat Cyber on LinkedIn: https://www.linkedin.com/company/blue-goat-cyber/ Blue Goat Cyber on Instagram: https://www.instagram.com/bluegoatcyber/ Blue Goat Cyber on Facebook: https://www.facebook.com/bluegoatcyber/ Blue Goat Cyber on YouTube: https://www.youtube.com/@BlueGoatCyber/?sub_confirmation=1

The Future of Cardio-Oncology Wearables with Ryan Neely

Cancer treatment is already difficult enough without adding more hospital visits, more testing, and more delays. Yet many cancer therapies carry a significant risk of damaging the heart, forcing patients to undergo regular cardiac screening throughout their treatment journey. What if clinicians could monitor cardiac function with a simple wearable patch instead? In this episode of the Med Device Cyber Podcast, Christian Espinosa sits down with Ryan Neely, co-founder and CEO of Skribe Medical. Ryan shares his journey from neuroscience research and implantable neuroprosthetics to building a company focused on improving cardiac monitoring for cancer patients. The discussion explores the growing field of cardio-oncology and the challenges patients face when cancer treatment depends on frequent cardiac assessments. Ryan explains how Skribe Medical's wearable monitoring platform aims to reduce treatment delays while improving patient convenience through a battery-free, AI-powered patch designed to measure cardiac function. The conversation also takes a deep dive into cybersecurity considerations for connected medical devices. Ryan and Christian discuss common misconceptions about cybersecurity risk, why hospital networks often present greater challenges than home environments, and how device manufacturers should think about security as products evolve from standalone systems to connected healthcare technologies. Finally, the episode explores commercialization, reimbursement models, FDA engagement, and the reality that regulatory clearance is often just one milestone in a much longer journey toward successful adoption. Whether you're a MedTech founder, healthcare innovator, cybersecurity professional, or clinician, this episode offers valuable insights into the intersection of patient care, connected devices, and healthcare innovation. Episode Breakdown * 00:00 – Introduction * 01:53 – The hidden cardiac risks of cancer treatments * 02:58 – Skribe Medical's wearable cardiac monitoring platform * 03:53 – Future applications beyond oncology * 04:45 – Battery-free device design and patient comfort * 06:00 – Remote patient monitoring and reimbursement models * 09:40 – Cybersecurity risks for connected medical devices * 14:06 – Why hospital networks present unique security challenges * 16:02 – FDA cybersecurity expectations and evolving regulations * 19:03 – Regulatory changes and long MedTech development cycles * 21:02 – Commercialization versus FDA approval * 24:13 – AI models and the Predetermined Change Control Plan * 25:55 – The realities of clinical testing and device validation * 28:14 – Final takeaways and lessons learned Find Ryan Neely here on LinkedIn: https://www.linkedin.com/in/ryan-neely-ph-d-14464340/ The Med Device Cyber Podcast is brought to you by Blue Goat Cyber, cybersecurity experts providing essential security solutions for the medical device industry. Learn more by visiting https://bluegoatcyber.com. If you're interested in our services or partnering with us, schedule a Discovery Session: https://go.bluegoatcyber.com/meetings/blue-goat-cyber/discovery-session Christian Espinosa is the CEO and founder of Blue Goat Cyber. Christian Espinosa on LinkedIn: https://www.linkedin.com/in/christianespinosa/ Blue Goat Cyber on LinkedIn: https://www.linkedin.com/company/blue-goat-cyber/ Blue Goat Cyber on Instagram: https://www.instagram.com/bluegoatcyber/ Blue Goat Cyber on Facebook: https://www.facebook.com/bluegoatcyber/ Blue Goat Cyber on YouTube: https://www.youtube.com/@BlueGoatCyber/?sub_confirmation=1

Navigating U.S. Market Entry for MedTech Developers with JJ Amell

When you develop a groundbreaking medical device, you assume the engineering and clinical data will carry you across the finish line. The legal landscape of U.S. market entry involves layers of corporate traps that most innovators completely overlook. In this episode of the Med Device Cyber Podcast, Christian and Trevor sit down with JJ Amell, the founder of Amell Law, to unpack the complex realities of international corporate structuring, business immigration, and intellectual property protection. JJ shares his unique transition from building computers and working within his father's cardiology practice to guiding international medical technology firms through federal bureaucracy. The trio explores why setting up a basic LLC through automated online legal platforms leaves multi-million dollar startups exposed to catastrophic liability. They break down the tactical timing of securing O-1 founder visas and investor visas before state borders close behind you, and analyze the shifting corporate battleground between Delaware and Texas for control over majority shareholder decisions. The specifics may differ, but the challenge is the same: protecting what you've built. This conversation covers everything from Customs and Border Protection issues to defending service marks against public database scrapers. Episode Breakdown: * 00:00 - Intro * 00:54 - Welcoming MedTech attorney JJ Amell * 03:38 - Solving legal pain points for global innovators * 06:11 - The three pillars of U.S. market entry * 08:33 - The inverse market challenge: Moving from Europe to the U.S. * 10:43 - Factoring in fiscal repercussions and international tax consultations * 12:57 - State jurisdictions: Delaware standards vs Texas corporate law * 16:21 - California red tape and the rise of alternative technology hubs * 22:41 - Reverse engineering corporate strategy to avoid late-stage corrections * 25:44 - The danger of automated penetration tests and interactive FDA reviews * 29:39 - Deportation risks and B-1/B-2 tourist visa limitations * 31:24 - Government bureaucracy timelines and USPTO trademark processing realities * 33:04 - Public database scraping and the explosion of corporate filing scams * 37:37 - AI voice cloning and deepfake vulnerabilities targeting tech executives * 40:52 - Code Blue Chart: Documented cybersecurity fatalities in healthcare * 44:25 - Closing thoughts and reconnecting with nature Find JJ Amell here on LinkedIn: https://www.linkedin.com/in/jjamellesq/ The Med Device Cyber Podcast is brought to you by Blue Goat Cyber, cybersecurity experts providing essential security solutions for the medical device industry. Learn more by visiting https://bluegoatcyber.com. If you're interested in our services or partnering with us, schedule a Discovery Session: https://go.bluegoatcyber.com/meetings/blue-goat-cyber/discovery-session Christian Espinosa is the CEO and founder of Blue Goat Cyber. Trevor Slattery is the Chief Operating Officer at Blue Goat Cyber. Christian Espinosa on LinkedIn: https://www.linkedin.com/in/christianespinosa/ Trevor Slattery on LinkedIn: https://www.linkedin.com/in/trevor-slattery-34852b1a9 Blue Goat Cyber on LinkedIn: https://www.linkedin.com/company/blue-goat-cyber/ Blue Goat Cyber on Instagram: https://www.instagram.com/bluegoatcyber/ Blue Goat Cyber on Facebook: https://www.facebook.com/bluegoatcyber/ Blue Goat Cyber on YouTube: https://www.youtube.com/@BlueGoatCyber/?sub_confirmation=1

The Psychology of Medical Device Security Awareness with Shahbaz Ahmed

When you try to communicate cybersecurity risks to medical device manufacturers, do you feel like you are speaking ancient Hieroglyphics? You are not alone. In this episode of the Med Device Cyber Podcast, Christian and Trevor sit down with Shahbaz Ahmed, the Founder and CEO of Leadership Studi. Together, they explore the intersection of human psychology, cross-cultural leadership styles, and the massive awareness deficit currently facing global medical device cybersecurity. Shahbaz shares his unique framework on human engineering, detailing how the emotional depth of Eastern leadership can bridge with the logic-driven framework of the West to build stronger, international tech organizations. The trio explores why cybersecurity professionals struggle to make hospital buyers and developers care about vulnerabilities, why simple, human-centric messaging trumps complex technical jargon every single time, and whether you are a technical specialist looking to scale into broad leadership or an executive trying to keep patient devices secure across global borders. Episode Breakdown: * 00:00 - Intro * 02:14 - Leadership styles: Eastern emotion vs Western logic * 05:07 - Human engineering and the science of emotional psychology * 08:31 - Capacity vs capability: breaking down our emotional fuses * 12:28 - Technical leadership vs broad vision leadership * 14:29 - The Ex Machina color theory analogy for cultural exposure * 19:10 - Hungry judges and decision fatigue: how state affects choice * 24:43 - How increasing capability expands human cognitive capacity * 26:35 - The shocking lack of medical device cybersecurity awareness globally * 31:12 - Why regulatory updates are outpacing downstream hospital practice * 35:27 - Breaking down big words to make security simple * 38:00 - Key takeaways: consistency as the ultimate weapon for success Find Shabaz Ahmed here on LinkedIn: https://www.linkedin.com/in/shahbaz-ahmed-4004ab86/ The Med Device Cyber Podcast is brought to you by Blue Goat Cyber, cybersecurity experts providing essential security solutions for the medical device industry. Learn more by visiting https://bluegoatcyber.com. If you're interested in our services or partnering with us, schedule a Discovery Session: https://go.bluegoatcyber.com/meetings/blue-goat-cyber/discovery-session Christian Espinosa is the CEO and founder of Blue Goat Cyber. Trevor Slattery is the Chief Operating Officer at Blue Goat Cyber. Christian Espinosa on LinkedIn: https://www.linkedin.com/in/christianespinosa/ Trevor Slattery on LinkedIn: https://www.linkedin.com/in/trevor-slattery-34852b1a9 Blue Goat Cyber on LinkedIn: https://www.linkedin.com/company/blue-goat-cyber/ Blue Goat Cyber on Instagram: https://www.instagram.com/bluegoatcyber/ Blue Goat Cyber on Facebook: https://www.facebook.com/bluegoatcyber/ Blue Goat Cyber on YouTube: https://www.youtube.com/@BlueGoatCyber/?sub_confirmation=1

The Age of Digital Health Humanity with Philippe Gerwill

Philippe Gerwill manages to be a board advisor for nearly 30 companies without losing his humanity. In this episode of the Med Device Cyber Podcast, Christian Espinosa sits down with the world-renowned futurist to discuss why “unlearning” is the most vital skill for today’s healthcare leaders. They explore the shift from traditional medicine to consumer-led health and why patients are flocking to ChatGPT regardless of what their doctors think! Philippe explains how he maintains a presence on close to 30 company boards while using a massive AI ecosystem to scale his impact. This conversation is a reminder that the human piece is actually the only thing that matters in the end. Episode Breakdown: * 00:00 The concept of unlearning as a vital skill for healthcare leaders. * 01:52 Philippe’s background at Novartis and transition into healthcare technology. * 03:35 Managing advisory roles for nearly 30 companies using an AI ecosystem. * 04:50 The Favikon ranking and maintaining a 96.5 percent authenticity score. * 07:49 Defining the role of a futurist in the modern era. * 09:21 The intersection of technology and gut feeling. * 18:15 Patient behavior: why consumers are driving the shift to AI in clinics. * 32:10 The mandate to use our brain and the risks of over-relying on tools. The Med Device Cyber Podcast is brought to you by Blue Goat Cyber, cybersecurity experts providing essential security solutions for the medical device industry. Learn more by visiting https://bluegoatcyber.com. If you're interested in our services or partnering with us, schedule a Discovery Session: https://go.bluegoatcyber.com/meetings/blue-goat-cyber/discovery-session Christian Espinosa is the CEO and founder of Blue Goat Cyber. Trevor Slattery is the Chief Operating Officer at Blue Goat Cyber. Christian Espinosa on LinkedIn: https://www.linkedin.com/in/christianespinosa/ Trevor Slattery on LinkedIn: https://www.linkedin.com/in/trevor-slattery-34852b1a9 Blue Goat Cyber on LinkedIn: https://www.linkedin.com/company/blue-goat-cyber/ Blue Goat Cyber on Instagram: https://www.instagram.com/bluegoatcyber/ Blue Goat Cyber on Facebook: https://www.facebook.com/bluegoatcyber/ Blue Goat Cyber on YouTube: https://www.youtube.com/@BlueGoatCyber/?sub_confirmation=1