In order to integrate Medical Devices into clinical IT networks, their operators need device-specific information about its security capabilities. MITA (also known as the DICOM publisher) has published a standardized form with “19 questions” regarding the device’s product security functions. Since more than a decade this form is being used in the USA and has become a de-facto requirement for selling networked medical devices. Recently, the federal German IT security authority BSI – together with ZVEI Fachverband Elektromedizinische Technik joined forces to bring this form into German markets. This presentation highlights some practical aspects of managing the MDS2 form from a manufacturer’s perspective.