R-002-002 Quality objectives_2026_003
This document is pending review.
Objective details
Objective number
3
Description
Continuous cybersecurity improvement
Establishment date
January 2026
This objective continues from 2025, building on the cybersecurity foundations established during the FDA submission process. The focus shifts to continuous monitoring, vulnerability management, and keeping up with evolving cybersecurity requirements.
Planning�
Responsible
JD-005, JD-003, JD-004
Departments involved
The main departments involved are Product Development, Operations, and Quality & Regulatory.
Planned actions for 2026 period
- Conduct annual penetration testing
- Implement continuous vulnerability monitoring
- Address any new vulnerabilities in SOUP components
- Update cybersecurity documentation based on new threats or regulatory guidance
- Conduct cybersecurity training for relevant personnel
- Review and update threat models as needed
- Monitor FDA and EU cybersecurity guidance updates
Resources needed
Personnel from the product development team for implementation; personnel from the operations team for monitoring; personnel from the regulatory & quality department for documentation and compliance oversight.
Monitoring and follow up
| Period | % Completion | Follow up | Short-term actions |
|---|---|---|---|
| Q1 2026 | |||
| Q2 2026 | |||
| Q3 2026 | |||
| Q4 2026 |
Signature meaning
The signatures for the approval process of this document can be found in the verified commits at the repository for the QMS. As a reference, the team members who are expected to participate in this document and their roles in the approval process, as defined in Annex I Responsibility Matrix of the GP-001, are:
- Author: Team members involved
- Reviewer: JD-003 Design & Development Manager, JD-004 Quality Manager & PRRC
- Approver: JD-001 General Manager