The document discusses risk management best practices for developing life critical systems and medical devices. It defines key safety concepts like hazards, risks, and failures. It recommends performing risk analysis early in development using methods like FMEA. It also advocates for model-driven development practices like requirements management, system modeling, and automated document generation to improve safety, quality, and compliance. Success stories are provided of medical device companies using IBM Rational solutions to develop smarter and safer products.

1. Kimberly Roberts-Cobb Industry Solution Executive IBM Software Group, Rational Tiger Team [email_address] Risk Management in Developing Life Critical Systems

3. Life critical systems and devices are becoming instrumented, interconnected and intelligent, resulting in smarter devices Software, including artificial intelligence, monitors medical device data intake (e.g., physiological data) and sends alerts to caregivers. Chemical and biologic sensors monitor changes in patients’ vital signs and physiology. Micro-manipulation robotics and endoscopic imagery enable minimal invasive surgery. INSTRUMENTED INTERCONNECTED . INTELLIGENT And technological advances are enabling medical systems and devices to become smarter Wireless technologies such as Zigbee (low-power personal area network standard), Bluetooth, WiFi, cell phones, and RFID enable medical devices to communicate with caregivers, electronic medical records, and other devices. Wireless technologies support physiological telemetry systems that monitor patients in real-time Miniaturization in electro-mechanical components and electronics, including nanotechnology, enables devices to become portable, wearable and implantable. Passive, active, electromechanical and semi conductive sensors respond to patients’ physical changes (e.g., pressure, motion, thermal energy). Smart products transcend “one-size-fits-all” products enabling customers to get exactly what they want – tailored to their unique needs

19. Model system use cases to understand and identify potential hazards and risks (generated from Rational Rhapsody) Best Practice 3: Model Driven Systems Engineering

20. Link requirements to use cases to ensure all uses are fully understood so hazards can be identified earlier (generated from Rational Rhapsody) Best Practice 3: Model Driven Systems Engineering

21. Produce Hazard and fault tables as part of your development and ongoing risk management process not “after the fact” (generated from Rational Rhapsody) Best Practice 3: Model Driven Systems Engineering

22. Link potential faults to requirements for clarity on requirements with hazard mitigations (generated from Rational Rhapsody) Best Practice 3: Model Driven Systems Engineering

23. Control Change for Quality Systems Good Manufacturing Practice Establish an integrated change process across the lifecycle Manage Portfolio & Product Priorities Develop Model-Driven System -> Software Collaboration, Process, Workflow Execute Tests Capture & manage requirements Configuration Management Integrate Suppliers Capture customer requests & market driven enhancements Mechanical Collaborate across Development Disciplines Electrical Software Best Practice 4: Integrated Change and Configuration Management Testing Eco-system Integrated Change Management

29. The design and delivery of smart products is enabled by a collaborative solution that facilitates innovation while fostering visibility and integration to quantify hazards and risks Rational Workbench for Systems and Software Engineering Collaborate Improve Automate Collaborate across diverse engineering disciplines and development teams Achieve “quality by design” with an integrated, automated testing process Manage all system requirements with full traceability across the lifecycle Use modeling to validate requirements, architecture and design throughout the development process Rational Quality Manager Rational RRC/DOORS Rational Team Concert Rational Rhapsody

30. Rational Combined Portfolio in Action Industry’s most comprehensive offering System and Software Lifecycle Process Management Requirements Definition & Management Analysis & Design Quality Management Release Management Team Management Configuration & Change Mgmt Production / Operations Enterprise Architecture/ Architectural Frameworks Measurement & Reporting Product, Project & Portfolio Management

38. © Copyright IBM Corporation 2008. All rights reserved. The information contained in these materials is provided for informational purposes only, and is provided AS IS without warranty of any kind, express or implied. IBM shall not be responsible for any damages arising out of the use of, or otherwise related to, these materials. Nothing contained in these materials is intended to, nor shall have the effect of, creating any warranties or representations from IBM or its suppliers or licensors, or altering the terms and conditions of the applicable license agreement governing the use of IBM software. References in these materials to IBM products, programs, or services do not imply that they will be available in all countries in which IBM operates. Product release dates and/or capabilities referenced in these materials may change at any time at IBM’s sole discretion based on market opportunities or other factors, and are not intended to be a commitment to future product or feature availability in any way. IBM, the IBM logo, the on-demand business logo, Rational, the Rational logo, and other IBM products and services are trademarks of the International Business Machines Corporation, in the United States, other countries or both. Other company, product, or service names may be trademarks or service marks of others.