Medical IoT Security @ Asimily

Hospitals and the entire medical industry is filthy with vulnerabilities. Every single device in a hosptial is interconnected. The attack surface in any medical facility is massive. Asimily gives hospitals rich visibility into their facilities' posture.

Company

Asimily

Role

Lead Designer

Solving the Problem of Medical Cybersecurity

Asimily had a validated product-market fit, a usable product, but they wanted to take the next step in user experience. Medical IoT has a challenge very common in security products: Asimily can detect the vulnerabilities, but the product can't patch the vulnerabilities. The patches must be done by medical device engineers, a very atypical persona for security. Here's how we solved the problem:

Delightful Design Heuristics

Asimily's initial strategy was to create a POC by scanning as many vulnerabilities as possible and filling the interface with them. When I was brought in, there was a lot of data but very little delight. We started out by collaborating on some basic interface heuristics and implementing them for quick improvements. I created some wireframes to express my intent.

Creating stickiness

We needed to get the user to stay on the platform for more than just a few seconds, something their analytics said was a major problem. My goals in the designs were to:

Address paralysis by analysis
Synthesize important data and percolate to top
Nudge the user to accomplishing a small number of tasks
Personal visibility + team visibility

Idea & Execution

Features like dashboards, policy engines, and reports. The features I designed had to clearly prioritize CVEs to the engineers, show the progress over time, and provide proof of efficacy to CISOs.