Medical Device Software Cyber Risk Assessment Template

1. Device Identification

2. Intended Use & Network Connectivity

3. Asset Inventory

Asset Type Description

4. Threat Identification

Threat Source Threat Event Affected Asset

5. Vulnerability Identification

Vulnerability Description Affected Asset

6. Risk Analysis

Risk Description Likelihood Impact Risk Level

7. Mitigation Measures

Risk Mitigation Strategy Status

8. Residual Risk Evaluation

9. Review & Approval