Fossa
FOSSA, Inc.
★★★★★
3.4
/ 5
•
10 reviews
By submitting, I agree to receive periodic emails from FOSSA & accept the FOSSA Privacy Policy.
medical device cybersecurity: By submitting, I agree to receive periodic emails from FOSSA & accept the FOSSA Privacy Policy.
Consolidate SCA, BCA, and Container Security into a single solution that scales to 1000s of developers.
Eliminate vendor overlap, reduce false positives & unify security posture management across open source packages, binaries and containers.
Buyer Snapshot
Best for
- Organizations seeking to manage software supply chain risks and compliance.
- Companies needing to generate, manage, and share accurate SBOMs.
- Teams requiring automated license detection and policy enforcement.
How engagement typically works
- SaaS platform for universal software supply chain management.
- Tools for automated security threat detection and remediation.
Typical deliverables
- Software Bill of Materials (SBOMs) in various formats (CycloneDX, SPDX).
- Reports on code dependencies and license compliance.
- Security vulnerability analysis and remediation workflows.
Good to know
- Best when organizations need to scale security and compliance efforts across development teams.
Pricing
Model:
Custom pricing
HQ:
San Francisco, US
Languages:
English
Claim status:
Listed
Services & Capabilities
Medical Device Cybersecurity
Provider Type:
Software Platform
Service Categories:
SBOM Management (Software Tool), Vulnerability Management (Post-Market)
Submission Stage Support:
Pre-Submission (Planning)
Device Types Supported:
Software as a Medical Device (SaMD), Connected Hardware (IoT/WiFi/Bluetooth), Hospital/Enterprise Systems
Sbom Formats Supported:
CycloneDX, SPDX, Other
Standards Frameworks:
NTIA minimum elements compliance, FedRAMP and NIST compliant formats, Executive Order 14028, CISA compliance, NIST, FDA, PCI DSS, CRA, DORA
Pen Testing Available:
No
Threat Modeling Available:
No
Sbom Management Available:
Yes
Vulnerability Monitoring Available:
Yes
Rta Rescue Available:
No
cbam_verification
Additional medical_device_cybersecurity Details
Provider Type
Software Platform
Service Categories
SBOM Management, Vulnerability Management
Sbom Formats Supported
CycloneDX, SPDX
Standards Frameworks
IEC 81001-5-1, ISO 14971, NIST, AAMI
