Your Partner in Information Security
As experts in medical devices, backed by our own product development operations, we support you in your information security efforts.
We help you set objectives, identify risks, and implement measures at various levels within your organization — ranging from policy documents and internal training to cybersecurity actions.
Of course, we can assist you with NIS2, the upcoming cybersecurity directive, ISO 27001 certification and IEC 81001-5-1.

Expert Resource Infroamation Security
Medos consultants possess expert competence in information security. We help you work methodically with information security in compliance with ISO 27001. We also integrate this work with the new standard IEC 81001-5-1 (Health software and health IT systems safety, effectiveness, and security).
Hot Topic – New Cybersecurity Law: NIS2! - The EU's new cybersecurity directive (EU 2022/2555 NIS2), which is likely to be implemented into Swedish law during 2025, requires systematic information security management. Contact us, and we’ll be happy to provide an introduction!
Our model
- Stakeholder needs, scope, and objectives
- Inventory of information assets and current state
- Strategic planning
- Risk analysis
- Implementation of measures
- Certification (if needed)
- Follow-up and management
The process is highly risk-focused and considers your entire organization, supplier relations, product cybersecurity, and more. We can also take on the role of CISO (Chief Information Security Officer).
Together, we’ll develop a dynamic information security management system!
Read more about our Quality Management Services.
Project Management
We can take on a role as advisor, but more often, our clients want us to take a more active role with operational responsibility for preparing documentation for certification. Regardless of how you want us to support you, we guarantee that the consultant assisting you will have specialist expertise and provide genuine personal commitment.
Read more about our Product Development Services.
Gap-analysis ISO 27001
We are happy to perform a gap analysis against ISO 27001. A gap analysis is an excellent way for management teams to gain an overview and plan projects effectively.
Of course, we can also include a review of cybersecurity requirements in MDR, FDA’s cybersecurity guidelines, or IEC 81001-5-1 — fully tailored to your needs.
We give you the courage to go for it!
On your terms
We have worked with startups and small innovation companies in the medical device industry for many years. We understand the challenges our industry presents. You can count on us to be by your side with expertise and resources, even as your ideas and needs evolve. With us, you’ll benefit from personal relationships and genuine commitment. We aim to work with you long-term — on your terms.
