The Med Device Cyber Podcast

Building Medical Devices Right the First Time with Helen Souris

31 min · 10 jul 2026
aflevering Building Medical Devices Right the First Time with Helen Souris artwork

Beschrijving

Bringing an innovative medical device to market takes far more than a great idea. It requires regulatory strategy, cybersecurity, quality systems, and commercial planning from the very beginning. In this episode of the Med Device Cyber Podcast, Christian Espinosa is joined by Helen Souris, CEO of CardiHab and Board Member of the Medical Technology Association of Australia (MTAA), to discuss why so many promising digital health companies struggle when they leave the startup phase and enter the realities of regulation. Helen shares her experience leading a digital therapeutics company, raising investment in Australia, navigating software as a medical device regulations and helping startups avoid costly mistakes that can delay or even derail commercial success. The conversation explores why cybersecurity is becoming a deciding factor in procurement, how founders should think about regulatory strategy before writing a single line of code, why quality management systems cannot be bolted on later, and the real-world consequences of ignoring compliance until it's too late. Whether you're building a medical device, digital therapeutic, AI healthcare platform or connected medical technology, this episode offers practical advice for creating products that are secure, compliant and built to scale. In This Episode: * 00:57 Helen's journey from pharma to digital therapeutics * 04:33 The realities of raising MedTech investment in Australia * 09:06 Why choosing the right investor matters * 13:22 Why many digital health startups misunderstand regulation * 15:21 Why cybersecurity comes up in every customer conversation * 16:15 Why founders still leave cybersecurity until the end * 16:53 Building regulation, quality and cybersecurity from Day One * 18:31 The $93 million company forced to pull its product * 21:09 Explaining medical devices through the user journey * 22:50 The stadium hacking analogy that changes perspectives * 25:13 Why wearables need a medical lens * 26:57 The fake Wi-Fi demonstration everyone should remember * 28:20 Why rebuilding is always more expensive than building properly * 29:30 Christian's biggest takeaways Find Helen Souris here on LinkedIn: https://www.linkedin.com/in/helen-souris/ The Med Device Cyber Podcast is brought to you by Blue Goat Cyber, cybersecurity experts providing essential security solutions for the medical device industry. Learn more by visiting https://bluegoatcyber.com. If you're interested in our services or partnering with us, schedule a Discovery Session: https://go.bluegoatcyber.com/meetings/blue-goat-cyber/discovery-session Christian Espinosa is the CEO and founder of Blue Goat Cyber. Christian Espinosa on LinkedIn: https://www.linkedin.com/in/christianespinosa/ Blue Goat Cyber on LinkedIn: https://www.linkedin.com/company/blue-goat-cyber/

Reacties

0

Wees de eerste die een reactie plaatst

Meld je nu aan en word lid van de The Med Device Cyber Podcast community!

Probeer gratis

Probeer 14 dagen gratis

€ 9,99 / maand na proefperiode. · Elk moment opzegbaar.

  • Podcasts die je alleen op Podimo hoort
  • 20 uur luisterboeken / maand
  • Gratis podcasts

Alle afleveringen

89 afleveringen

aflevering Building Medical Devices Right the First Time with Helen Souris artwork

Building Medical Devices Right the First Time with Helen Souris

Bringing an innovative medical device to market takes far more than a great idea. It requires regulatory strategy, cybersecurity, quality systems, and commercial planning from the very beginning. In this episode of the Med Device Cyber Podcast, Christian Espinosa is joined by Helen Souris, CEO of CardiHab and Board Member of the Medical Technology Association of Australia (MTAA), to discuss why so many promising digital health companies struggle when they leave the startup phase and enter the realities of regulation. Helen shares her experience leading a digital therapeutics company, raising investment in Australia, navigating software as a medical device regulations and helping startups avoid costly mistakes that can delay or even derail commercial success. The conversation explores why cybersecurity is becoming a deciding factor in procurement, how founders should think about regulatory strategy before writing a single line of code, why quality management systems cannot be bolted on later, and the real-world consequences of ignoring compliance until it's too late. Whether you're building a medical device, digital therapeutic, AI healthcare platform or connected medical technology, this episode offers practical advice for creating products that are secure, compliant and built to scale. In This Episode: * 00:57 Helen's journey from pharma to digital therapeutics * 04:33 The realities of raising MedTech investment in Australia * 09:06 Why choosing the right investor matters * 13:22 Why many digital health startups misunderstand regulation * 15:21 Why cybersecurity comes up in every customer conversation * 16:15 Why founders still leave cybersecurity until the end * 16:53 Building regulation, quality and cybersecurity from Day One * 18:31 The $93 million company forced to pull its product * 21:09 Explaining medical devices through the user journey * 22:50 The stadium hacking analogy that changes perspectives * 25:13 Why wearables need a medical lens * 26:57 The fake Wi-Fi demonstration everyone should remember * 28:20 Why rebuilding is always more expensive than building properly * 29:30 Christian's biggest takeaways Find Helen Souris here on LinkedIn: https://www.linkedin.com/in/helen-souris/ The Med Device Cyber Podcast is brought to you by Blue Goat Cyber, cybersecurity experts providing essential security solutions for the medical device industry. Learn more by visiting https://bluegoatcyber.com. If you're interested in our services or partnering with us, schedule a Discovery Session: https://go.bluegoatcyber.com/meetings/blue-goat-cyber/discovery-session Christian Espinosa is the CEO and founder of Blue Goat Cyber. Christian Espinosa on LinkedIn: https://www.linkedin.com/in/christianespinosa/ Blue Goat Cyber on LinkedIn: https://www.linkedin.com/company/blue-goat-cyber/

10 jul 202631 min
aflevering What MedTech Can Learn from the Casino Industry with Melissa Aarskaug artwork

What MedTech Can Learn from the Casino Industry with Melissa Aarskaug

For years, cybersecurity has been viewed as an IT responsibility. Today's threat landscape demands something very different. In this episode of the Med Device Cyber Podcast, Christian Espinosa is joined by Melissa Aarskaug, a cybersecurity executive with extensive experience protecting highly regulated industries, including banking and casino gaming. Melissa shares lessons from an industry where operations run 24 hours a day, every day of the year, and where even a few minutes of downtime can have enormous financial consequences. The conversation explores why attackers increasingly target regulated industries, how cyber resilience differs from compliance, and why cybersecurity has evolved into a leadership issue rather than simply an IT function. Melissa explains why organisations should focus less on preventing every possible attack and more on ensuring the business can continue operating when incidents occur. Christian and Melissa also discuss how medical device manufacturers can learn from the gaming industry's approach to resilience, the growing role of AI in both cyber defence and cybercrime, why cybersecurity should be integrated into quality management systems, and how leadership teams can better prioritise cyber risk across their organisations. Whether you're a MedTech founder, cybersecurity professional, healthcare leader, or product developer, this episode offers practical insights into building more resilient organisations in an increasingly connected world. Episode Breakdown * 00:00 Introduction * 01:09 Lessons from protecting the gaming industry * 01:58 Why attackers target regulated industries * 05:22 Cybersecurity is about pressure, not industries * 06:07 Compliance versus cyber resilience * 08:08 Medical devices and connected ecosystems * 12:29 The famous fish tank cyberattack * 15:03 FDA expectations versus hospital expectations * 16:04 AI, cyber maturity and the future of security * 17:25 Four priorities every leader should focus on * 21:24 Why penetration tests often fail to create change * 24:38 FDA compliance and designing security from the beginning * 26:48 Cyber insurance isn't a silver bullet * 32:21 Cybersecurity is becoming part of quality * 33:26 Why cybersecurity is moving beyond IT * 37:42 Final thoughts and key takeaways Find Melissa Aarskaug here on LinkedIn: https://www.linkedin.com/in/melissa-aarskaug/ The Med Device Cyber Podcast is brought to you by Blue Goat Cyber, cybersecurity experts providing essential security solutions for the medical device industry. Learn more by visiting https://bluegoatcyber.com. If you're interested in our services or partnering with us, schedule a Discovery Session: https://go.bluegoatcyber.com/meetings/blue-goat-cyber/discovery-session Christian Espinosa is the CEO and founder of Blue Goat Cyber. Christian Espinosa on LinkedIn: https://www.linkedin.com/in/christianespinosa/ Blue Goat Cyber on LinkedIn: https://www.linkedin.com/company/blue-goat-cyber/ Blue Goat Cyber on Instagram: https://www.instagram.com/bluegoatcyber/ Blue Goat Cyber on Facebook: https://www.facebook.com/bluegoatcyber/ Blue Goat Cyber on YouTube: https://www.youtube.com/@BlueGoatCyber/?sub_confirmation=1

25 jun 202641 min
aflevering The Future of Cardio-Oncology Wearables with Ryan Neely artwork

The Future of Cardio-Oncology Wearables with Ryan Neely

Cancer treatment is already difficult enough without adding more hospital visits, more testing, and more delays. Yet many cancer therapies carry a significant risk of damaging the heart, forcing patients to undergo regular cardiac screening throughout their treatment journey. What if clinicians could monitor cardiac function with a simple wearable patch instead? In this episode of the Med Device Cyber Podcast, Christian Espinosa sits down with Ryan Neely, co-founder and CEO of Skribe Medical. Ryan shares his journey from neuroscience research and implantable neuroprosthetics to building a company focused on improving cardiac monitoring for cancer patients. The discussion explores the growing field of cardio-oncology and the challenges patients face when cancer treatment depends on frequent cardiac assessments. Ryan explains how Skribe Medical's wearable monitoring platform aims to reduce treatment delays while improving patient convenience through a battery-free, AI-powered patch designed to measure cardiac function. The conversation also takes a deep dive into cybersecurity considerations for connected medical devices. Ryan and Christian discuss common misconceptions about cybersecurity risk, why hospital networks often present greater challenges than home environments, and how device manufacturers should think about security as products evolve from standalone systems to connected healthcare technologies. Finally, the episode explores commercialization, reimbursement models, FDA engagement, and the reality that regulatory clearance is often just one milestone in a much longer journey toward successful adoption. Whether you're a MedTech founder, healthcare innovator, cybersecurity professional, or clinician, this episode offers valuable insights into the intersection of patient care, connected devices, and healthcare innovation. Episode Breakdown * 00:00 – Introduction * 01:53 – The hidden cardiac risks of cancer treatments * 02:58 – Skribe Medical's wearable cardiac monitoring platform * 03:53 – Future applications beyond oncology * 04:45 – Battery-free device design and patient comfort * 06:00 – Remote patient monitoring and reimbursement models * 09:40 – Cybersecurity risks for connected medical devices * 14:06 – Why hospital networks present unique security challenges * 16:02 – FDA cybersecurity expectations and evolving regulations * 19:03 – Regulatory changes and long MedTech development cycles * 21:02 – Commercialization versus FDA approval * 24:13 – AI models and the Predetermined Change Control Plan * 25:55 – The realities of clinical testing and device validation * 28:14 – Final takeaways and lessons learned Find Ryan Neely here on LinkedIn: https://www.linkedin.com/in/ryan-neely-ph-d-14464340/ The Med Device Cyber Podcast is brought to you by Blue Goat Cyber, cybersecurity experts providing essential security solutions for the medical device industry. Learn more by visiting https://bluegoatcyber.com. If you're interested in our services or partnering with us, schedule a Discovery Session: https://go.bluegoatcyber.com/meetings/blue-goat-cyber/discovery-session Christian Espinosa is the CEO and founder of Blue Goat Cyber. Christian Espinosa on LinkedIn: https://www.linkedin.com/in/christianespinosa/ Blue Goat Cyber on LinkedIn: https://www.linkedin.com/company/blue-goat-cyber/ Blue Goat Cyber on Instagram: https://www.instagram.com/bluegoatcyber/ Blue Goat Cyber on Facebook: https://www.facebook.com/bluegoatcyber/ Blue Goat Cyber on YouTube: https://www.youtube.com/@BlueGoatCyber/?sub_confirmation=1

18 jun 202632 min
aflevering Navigating U.S. Market Entry for MedTech Developers with JJ Amell artwork

Navigating U.S. Market Entry for MedTech Developers with JJ Amell

When you develop a groundbreaking medical device, you assume the engineering and clinical data will carry you across the finish line. The legal landscape of U.S. market entry involves layers of corporate traps that most innovators completely overlook. In this episode of the Med Device Cyber Podcast, Christian and Trevor sit down with JJ Amell, the founder of Amell Law, to unpack the complex realities of international corporate structuring, business immigration, and intellectual property protection. JJ shares his unique transition from building computers and working within his father's cardiology practice to guiding international medical technology firms through federal bureaucracy. The trio explores why setting up a basic LLC through automated online legal platforms leaves multi-million dollar startups exposed to catastrophic liability. They break down the tactical timing of securing O-1 founder visas and investor visas before state borders close behind you, and analyze the shifting corporate battleground between Delaware and Texas for control over majority shareholder decisions. The specifics may differ, but the challenge is the same: protecting what you've built. This conversation covers everything from Customs and Border Protection issues to defending service marks against public database scrapers. Episode Breakdown: * 00:00 - Intro * 00:54 - Welcoming MedTech attorney JJ Amell * 03:38 - Solving legal pain points for global innovators * 06:11 - The three pillars of U.S. market entry * 08:33 - The inverse market challenge: Moving from Europe to the U.S. * 10:43 - Factoring in fiscal repercussions and international tax consultations * 12:57 - State jurisdictions: Delaware standards vs Texas corporate law * 16:21 - California red tape and the rise of alternative technology hubs * 22:41 - Reverse engineering corporate strategy to avoid late-stage corrections * 25:44 - The danger of automated penetration tests and interactive FDA reviews * 29:39 - Deportation risks and B-1/B-2 tourist visa limitations * 31:24 - Government bureaucracy timelines and USPTO trademark processing realities * 33:04 - Public database scraping and the explosion of corporate filing scams * 37:37 - AI voice cloning and deepfake vulnerabilities targeting tech executives * 40:52 - Code Blue Chart: Documented cybersecurity fatalities in healthcare * 44:25 - Closing thoughts and reconnecting with nature Find JJ Amell here on LinkedIn: https://www.linkedin.com/in/jjamellesq/ The Med Device Cyber Podcast is brought to you by Blue Goat Cyber, cybersecurity experts providing essential security solutions for the medical device industry. Learn more by visiting https://bluegoatcyber.com. If you're interested in our services or partnering with us, schedule a Discovery Session: https://go.bluegoatcyber.com/meetings/blue-goat-cyber/discovery-session Christian Espinosa is the CEO and founder of Blue Goat Cyber. Trevor Slattery is the Chief Operating Officer at Blue Goat Cyber. Christian Espinosa on LinkedIn: https://www.linkedin.com/in/christianespinosa/ Trevor Slattery on LinkedIn: https://www.linkedin.com/in/trevor-slattery-34852b1a9 Blue Goat Cyber on LinkedIn: https://www.linkedin.com/company/blue-goat-cyber/ Blue Goat Cyber on Instagram: https://www.instagram.com/bluegoatcyber/ Blue Goat Cyber on Facebook: https://www.facebook.com/bluegoatcyber/ Blue Goat Cyber on YouTube: https://www.youtube.com/@BlueGoatCyber/?sub_confirmation=1

4 jun 202648 min
aflevering The Psychology of Medical Device Security Awareness with Shahbaz Ahmed artwork

The Psychology of Medical Device Security Awareness with Shahbaz Ahmed

When you try to communicate cybersecurity risks to medical device manufacturers, do you feel like you are speaking ancient Hieroglyphics? You are not alone. In this episode of the Med Device Cyber Podcast, Christian and Trevor sit down with Shahbaz Ahmed, the Founder and CEO of Leadership Studi. Together, they explore the intersection of human psychology, cross-cultural leadership styles, and the massive awareness deficit currently facing global medical device cybersecurity. Shahbaz shares his unique framework on human engineering, detailing how the emotional depth of Eastern leadership can bridge with the logic-driven framework of the West to build stronger, international tech organizations. The trio explores why cybersecurity professionals struggle to make hospital buyers and developers care about vulnerabilities, why simple, human-centric messaging trumps complex technical jargon every single time, and whether you are a technical specialist looking to scale into broad leadership or an executive trying to keep patient devices secure across global borders. Episode Breakdown: * 00:00 - Intro * 02:14 - Leadership styles: Eastern emotion vs Western logic * 05:07 - Human engineering and the science of emotional psychology * 08:31 - Capacity vs capability: breaking down our emotional fuses * 12:28 - Technical leadership vs broad vision leadership * 14:29 - The Ex Machina color theory analogy for cultural exposure * 19:10 - Hungry judges and decision fatigue: how state affects choice * 24:43 - How increasing capability expands human cognitive capacity * 26:35 - The shocking lack of medical device cybersecurity awareness globally * 31:12 - Why regulatory updates are outpacing downstream hospital practice * 35:27 - Breaking down big words to make security simple * 38:00 - Key takeaways: consistency as the ultimate weapon for success Find Shabaz Ahmed here on LinkedIn: https://www.linkedin.com/in/shahbaz-ahmed-4004ab86/ The Med Device Cyber Podcast is brought to you by Blue Goat Cyber, cybersecurity experts providing essential security solutions for the medical device industry. Learn more by visiting https://bluegoatcyber.com. If you're interested in our services or partnering with us, schedule a Discovery Session: https://go.bluegoatcyber.com/meetings/blue-goat-cyber/discovery-session Christian Espinosa is the CEO and founder of Blue Goat Cyber. Trevor Slattery is the Chief Operating Officer at Blue Goat Cyber. Christian Espinosa on LinkedIn: https://www.linkedin.com/in/christianespinosa/ Trevor Slattery on LinkedIn: https://www.linkedin.com/in/trevor-slattery-34852b1a9 Blue Goat Cyber on LinkedIn: https://www.linkedin.com/company/blue-goat-cyber/ Blue Goat Cyber on Instagram: https://www.instagram.com/bluegoatcyber/ Blue Goat Cyber on Facebook: https://www.facebook.com/bluegoatcyber/ Blue Goat Cyber on YouTube: https://www.youtube.com/@BlueGoatCyber/?sub_confirmation=1

28 mei 202640 min