Let's Talk Risk! Podcast

Where MedTech professionals gain clarity and confidence to navigate complex decisions.

Let’s Talk Risk! brings together MedTech leaders and practitioners for thoughtful conversations on the challenges that shape risk, quality, innovation, and leadership. With 150+ episodes and more than 30K downloads, it helps professionals gain the clarity and confidence to lead through complex decisions. naveenagarwalphd.substack.com

  1. 1d ago

    LTR 161: AI Governance by Design

    Summary “Let’s treat AI governance by design as the connective tissue of a product lifecycle ecosystem.” AI governance is often introduced as another layer of oversight—more procedures, approvals, documentation, and checklists. Ankita Mishra offers a different way to think about it: governance should be designed into the digital health product lifecycle from the beginning. In this episode of the Let’s Talk Risk! conversation, host Naveen Agarwal and Ankita Mishra explore how systems thinking and risk-based decision-making can help organizations innovate responsibly without applying the same level of rigor to every product or use case. They discuss flexible quality systems, the importance of defensible rationale, third-party AI solutions, supplier dependencies, privacy and security, model performance, and the need to monitor AI after deployment. The conversation also addresses what AI means for quality, regulatory, and risk professionals. Rather than making human expertise less relevant, Ankita argues that AI increases the need for critical thinking, judgment, collaboration, and continuous learning. Listen to the full 25-minute podcast or jump to a section of interest listed below. Chapters 00:00 – Introduction and Welcome01:04 – Ankita Mishra’s Career Journey04:36 – Reframing AI Governance by Design06:40 – Shifting Critical Thinking Upstream09:11 – Matching Development Rigor to Risk12:20 – Building Defensible Risk-Based Rationales14:17 – AI Governance Across the Product Lifecycle16:03 – Evaluating Third-Party AI and eQMS Solutions18:22 – Preparing Quality and Regulatory Professionals for AI23:00 – Closing Takeaways on Responsible AI If you enjoyed this podcast, consider subscribing to the Let’s Talk Risk! newsletter. Suggested links: LTR: Proactive AI Governance in MedTech. LTR: Building Trustworthy AI and MedTech Readiness. LTR: Evolving Regulatory Landscape for AI in MedTech. Key Takeaways * AI governance should begin with the design decision—not after the technology has already been selected or deployed. * Start with the intended use and the underlying problem. The first question is not simply how to use AI, but whether AI is necessary. * The level of lifecycle rigor should reflect product risk, regulatory status, and the consequences of failure. Not every requirement needs to be applied identically to every solution. * A flexible, risk-based quality system depends on clear reasoning. Organizations must be able to justify both why a requirement applies and why it may not apply. * Responsible AI governance extends beyond the algorithm. It includes privacy, cybersecurity, infrastructure, suppliers, contracts, deployment, maintenance, performance monitoring, and drift. * Organizations evaluating third-party AI tools should understand whether their data will be retained or used for training, what information may be disclosed, and what additional controls may be needed. * A sandbox approach can reduce uncertainty: start with a controlled, lower-risk application, evaluate whether it produces meaningful value, and scale based on evidence. * AI will change professional responsibilities, but it will not eliminate the need for experienced judgment. Critical thinking, systems thinking, collaboration, and organizational knowledge will become even more valuable. * Lifelong learning is no longer limited to formal training. Professionals can learn by engaging with thought leaders, attending conferences, following emerging standards, sharing ideas publicly, and allowing others to challenge their thinking. Keywords AI governance, responsible AI, digital health, systems engineering, risk-based decision-making, quality management systems, third-party AI, model drift, regulatory compliance, critical thinking About Ankita Mishra Ankita Mishra is the Digital Health Quality Director at Evinova, where her work focuses on AI governance and responsible innovation in healthcare, digital health product strategy, lifecycle management, GCP compliance, global standards, and quality systems. She brings more than 20 years of experience spanning software development, biomedical engineering, medical devices, systems engineering, and software quality. Her career has included roles at AstraZeneca, Senseonics, Medtronic, Terumo Cardiovascular Systems, Integra LifeSciences, and Infosys. Ankita holds a master’s degree in public health from Johns Hopkins University, an MS in biomedical engineering from Drexel University, and a BE in electronics from Nagpur University. Her work centers on enabling innovation and regulatory rigor to advance together rather than treating them as competing objectives. Let’s Talk Risk! with Dr. Naveen Agarwal is a bi-weekly live audio event on LinkedIn, where we talk about risk management related topics in a casual, informal way. Join us at 11:00 am EST every other Friday on LinkedIn. Disclaimer Information and insights presented in this podcast are for educational purposes only, and not as legal advice. Views expressed by all speakers are their own and do not reflect those of their respective organizations. Parts of this article were created using AI-generated content, which was subsequently reviewed, edited, and fact-checked by the author to ensure accuracy and alignment with our standards. This is a public episode. If you'd like to discuss this with other subscribers or get access to bonus episodes, visit naveenagarwalphd.substack.com/subscribe

    LTR 161: AI Governance by Design
  2. Jul 10

    Case Study: Why FDA Cybersecurity Expectations Are Really QMS Expectations

    You cannot bolt cybersecurity onto a medical device at the end of development. FDA’s cybersecurity guidance makes a clear shift: cyber risk is now a quality system issue, a patient safety issue, and a lifecycle management issue. For connected and software-enabled devices, it is not enough to show that the software works as intended. Manufacturers also need to show how cybersecurity risks were identified, controlled, verified, traced to patient harm, and managed after release. In this audio summary, we walk through why FDA’s expectations go beyond submission documentation and why QA/RA teams need to understand the practical connections between SPDF, threat modeling, SBOMs, vulnerability management, postmarket patching, and the medical device QMS. Key highlights covered in the audio: * Why cybersecurity now needs to be treated as part of the medical device QMS * How Section 524(b) changes expectations for “cyber devices” * Why cyber risk needs to connect to patient harm, not just IT vulnerability * How SPDF, threat modeling, architecture views, and testing evidence fit together * Why machine-readable SBOMs and VEX documentation matter for vulnerability management * How postmarket patching, CVD, and cybersecurity management plans create lifecycle obligations Keywords: FDA cybersecurity guidance, medical device cybersecurity, cyber device, SPDF, SBOM, medical device QMS, cybersecurity risk management, patient safety, postmarket cybersecurity. 🎧Click Play above to listen to a brief audio summary about this case and lessons QA/RA and Clinical professionals can apply in practice using the newly released FDA Guidance. Thanks for reading Let's Talk Risk!. If you liked this post, share with others. Note: The audio summary was prepared using Google NotebookLM, an AI-enabled research tool. Here are a few key resources used for this analysis: * FDA (2026, February 3), Cybersecurity in Medical Devices: Quality Management System Considerations and Content of Premarket Submissions, Final Guidance, FDA. * Apotech Consulting. (2026, May 14). The Software Bill of Materials (SBOM): What Every SaMD Manufacturer Needs to Know. Apotech Consulting. * Espinosa, C. (2026). 12 Reasons the FDA Rejects Cybersecurity Submissions. Blue Goat Cyber. * Al-Faruque, F. (2026, February 4). FDA reissues cybersecurity guidance to align with QMSR. Regulatory Affairs Professionals Society (RAPS). * Exponent. (2026, April 6). Navigating FDA's Cybersecurity in Medical Devices Guidance. Exponent. This is a public episode. If you'd like to discuss this with other subscribers or get access to bonus episodes, visit naveenagarwalphd.substack.com/subscribe

    Case Study: Why FDA Cybersecurity Expectations Are Really QMS Expectations
  3. Jul 3

    LTR 160: IMSC26 Highlights - From Compliance to Proactive MedTech Safety

    Summary “The biggest takeaway was realizing that our perspectives on risk and safety are not isolated. They are shared, validated, and strengthened by others in the field.” In this special episode of the Let’s Talk Risk! conversation, host Naveen Agarwal brings together a panel of medtech safety and risk management leaders to discuss key takeaways from IMSC26 in Boston. The conversation highlights why the conference has become a unique gathering place for the medtech safety community: a forum where risk, quality, regulatory, clinical, and engineering professionals can speak a shared language and challenge each other’s thinking. The panel explores several major themes: moving beyond compliance, bringing patient perspective into risk management, understanding QMSR as a shift toward risk-based quality systems, strengthening judgment and critical thinking, and using AI as a thinking partner rather than a replacement for expertise. Listen to the full 47-minute podcast or jump to a section of interest listed below. Chapters 00:00 – Introduction and Panel Overview01:23 – Bijan Elahi on the Growth and Vision of IMSC06:23 – Proactive Safety from Clinic to Home08:28 – Patient Safety as the Central Stakeholder Theme10:15 – FDA, QMSR, and the Shift Toward Risk-Based Thinking18:53 – Design Control, Agile Software, and Surgical Robotics22:11 – Hidden Influences, Judgment, and Psychological Safety34:26 – AI as a Tool, Not a Replacement for Expertise40:00 – Career Day, Final Takeaways, and IMSC27 Preview If you enjoyed this podcast, consider subscribing to the Let’s Talk Risk! newsletter. Suggested links: LTR: Tips for Improving Collaboration in Risk Management. LTR: From Procedures to Judgment - Leading Through QMSR Inspections. LTR: LTR Risk Coach - AI-Powered Decision Support Tool. Key Takeaways * IMSC has become a true medtech safety community.The conference gives risk professionals a rare space to connect, compare experiences, and realize they are not alone in the challenges they face. * Patient safety must be more than a slogan.The panel emphasized that patient perspective needs to show up directly in risk management, especially where traditional harm categories may miss emotional, psychological, or lived-experience impacts. * Risk management is not just a compliance exercise.It is a human practice that requires collaboration, judgment, shared language, and cross-functional maturity. * QMSR raises the bar for risk-based thinking.The discussion framed QMSR as a move toward connected quality systems where FDA may look at whether decisions, processes, and subsystems work together around patient safety. * Judgment cannot be fully proceduralized.Procedures matter, but good risk decisions also require critical thinking, psychological safety, leadership, and comfort with ambiguity. * AI can strengthen risk thinking, but it cannot replace expertise.The panel warned against over-reliance on AI while recognizing its value as a tool to organize thinking, challenge assumptions, and preserve institutional knowledge. Keywords IMSC26, medtech safety, medical device risk management, patient safety, QMSR, FDA, risk-based thinking, quality culture, critical thinking, AI in medtech, design control, safety architecture, patient perspective, regulatory strategy, risk management maturity Guest Speakers Bijan Elahi as an award-winning medical device risk management author, professor and consultant. Dr. Olaf Hedrich is the Chief Medical Safety Officer at Medtronic. Michelle Lott is an executive advisor in regulatory strategy, principal and founder at LeanRAQA, LLC. Aaron Joseph is a principal consultant at Sunstone Pilot. Let’s Talk Risk! with Dr. Naveen Agarwal is a bi-weekly live audio event on LinkedIn, where we talk about risk management related topics in a casual, informal way. Join us at 11:00 am EST every other Friday on LinkedIn. Disclaimer Information and insights presented in this podcast are for educational purposes only, and not as legal advice. Views expressed by all speakers are their own and do not reflect those of their respective organizations. Parts of this article were created using AI-generated content, which was subsequently reviewed, edited, and fact-checked by the author to ensure accuracy and alignment with our standards. This is a public episode. If you'd like to discuss this with other subscribers or get access to bonus episodes, visit naveenagarwalphd.substack.com/subscribe

    LTR 160: IMSC26 Highlights - From Compliance to Proactive MedTech Safety
  4. Jun 26

    LTR 159: The Evolving Regulatory Landscape for AI in MedTech

    Summary “Stop thinking of AI as replacing humans. Think about humans staying in charge while AI is placed in the loop” Artificial intelligence is no longer a future concept in MedTech. It is already inside medical devices, quality systems, regulatory workflows, post-market processes, and product development decisions. In this episode of the Let’s Talk Risk Podcast, host Naveen Agarwal sits down with Priya Setty and Atty Chakraborty for a wide-ranging discussion on how AI is changing medical device regulation and quality practice. Priya frames AI through a human lens: like a child growing into adulthood, AI needs supervision, boundaries, and responsible “parenting.” Atty builds on that by explaining how the conversation has shifted from “How do we regulate AI?” to more practical questions about testing, validation, acceptance criteria, context of use, and lifecycle control. The discussion covers the EU AI Act, FDA’s total product lifecycle approach, global regulatory trends, post-market complaint triage, AI in audits and quality operations, change control, PCCP, and the career implications for QA/RA professionals. A recurring theme is clear: AI can improve the quality, consistency, and timeliness of decisions, but only if humans remain in charge. Chapters 00:00 – Introduction: AI in MedTech and why this conversation matters 03:06 – Priya’s child development lens for understanding AI governance 08:45 – EU AI Act vs MDR: horizontal regulation meets medical device rules 11:15 – FDA’s lifecycle approach to AI-enabled medical devices 23:17 – AI in post-market complaint triage and safety signal detection 31:57 – PCCP for AI-enabled devices: opportunity, adoption, and business case 36:05 – Career implications for QA/RA professionals If you enjoyed this podcast, consider subscribing to the Let’s Talk Risk! newsletter. Suggested links: * Navigating convergence and divergence between the EU MDR and EU AI Act * LTR: Case Study: Contrasting U.S. and EU Approaches to AI Regulation * LTR: LTR Risk Coach - AI-Powered Decision Support Tool. Key Takeaways * AI is not new, but the risk profile has changed.What has changed is broader access, greater autonomy, and higher consequence decisions. * AI governance is about keeping humans in charge.Organizations need clear boundaries, validation, monitoring, and human judgment at critical decision points. * The EU and FDA are approaching AI differently.The EU AI Act creates a broad governance overlay, while FDA continues to emphasize lifecycle control, context of use, and post-market performance. * AI can strengthen QA/RA work if used carefully.It can support complaint triage, audit preparation, regulatory intelligence, quality documentation, and change assessment. * Post-market monitoring becomes even more important with AI.AI systems should not be treated as “validated once and valid forever,” especially when models may drift or behave differently in real-world use. * PCCP is useful when the product roadmap is clear.It can support planned AI changes, but it is not a shortcut for uncertain models or poorly defined strategy. * QA/RA professionals need AI governance fluency.They do not need to become data scientists, but they should understand intended use, bias, drift, validation, and where human review is essential. Keywords AI in medical devices, AI governance, AI-enabled medical devices, EU AI Act, FDA AI guidance, lifecycle management, post-market monitoring, PCCP, complaint triage, AI validation, change control, QA/RA professionals About Priya Setty Geethapriya (Priya) Setty is a regulatory affairs strategist and systems builder with over eight years in global regulatory affairs and more than twenty years in healthcare. Starting her career as a pediatric occupational therapist, Priya brings a unique blend of clinical insight and policy expertise to the evolving world of medical technology. She leads regulatory intelligence and digital transformation initiatives at a global medical device company, specializing in global regulatory strategy, regulatory intelligence, and digital health/AI compliance for high-risk devices. Priya is adept at navigating complex regulations such as the EU AI Act and FDA guidance, ensuring compliance is embedded in every innovation. A certified PMP, RAC (Devices), and ISO 13485 lead auditor, Priya is known for demystifying complex regulations and building systems that keep teams ahead of industry changes. Guided by her mantra, “make a choice, and make it happen,” she is dedicated to leadership, mentorship, and simplifying healthcare through curiosity and purpose-driven action. About Attrayee Chakraborty Attrayee Chakraborty is a quality and regulatory leader specializing in digital health and AI-enabled medical devices. At Analog Devices, she drives QMS development, risk management, and AI governance to meet global regulatory standards. Recognized as Quality Magazine’s 2025 “Rookie of the Year” and a 2025 RAPS Rising Star, Attrayee has delivered talks at major industry events including RAPS, MDM West, and ISPE. She also serves on working groups with IEEE, RAPS, and SQA, shaping the future of healthcare AI compliance. Passionate about empowering early-career professionals, she bridges the gap between regulatory rigor and real-world innovation. Disclaimer Information and insights presented in this podcast are for educational purposes only. Views expressed by all speakers are their own and do not reflect those of their respective organizations. Parts of this article were created using AI-generated content, which was subsequently reviewed, edited, and fact-checked by the author to ensure accuracy and alignment with our standards. This is a public episode. If you'd like to discuss this with other subscribers or get access to bonus episodes, visit naveenagarwalphd.substack.com/subscribe

    LTR 159: The Evolving Regulatory Landscape for AI in MedTech
  5. Jun 19

    Case Study: FDA’s New Expectation for Use-Related Risk in Medical Device Submissions

    You cannot reverse engineer your human factors regulatory strategy at the 11th hour. FDA’s new human factors guidance is not just about what goes into a marketing submission. It changes the way teams need to think about use-related risk, critical tasks, labeling, training, post-market evidence, and design change control across the product lifecycle. In this audio case study, we walk through why Category 3 human factors validation may become the default concern when critical tasks are introduced or impacted and why Decision Point D is not a shortcut, but an evidence-based exception that depends on history of use, user interface complexity, and the adequacy of existing risk controls. Key highlights covered in the audio: * Why human factors can no longer be treated as a late-stage submission activity * How use-related risk analysis drives the identification of critical tasks * Why Category 3 validation may be triggered by more than obvious design changes * How Decision Point D may reduce submission burden — but only with strong evidence * Why post-market surveillance data now has direct pre-market strategic value Keywords: FDA human factors guidance, medical device marketing submissions, use-related risk analysis, critical tasks, Category 3 human factors validation, Decision Point D, eSTAR, QMSR, medical device usability, post-market surveillance, design validation, medical device labeling. 🎧Click Play above to listen to a brief audio summary about this case and lessons QA/RA and Clinical professionals can apply in practice using the newly released FDA Guidance. Thanks for reading Let's Talk Risk!. If you liked this post, share with others. Note: The audio summary was prepared using Google NotebookLM, an AI-enabled research tool. Here are a few key resources used for this analysis: * FDA (2026, May 29), Content of Human Factors Information in Medical Device Marketing Submissions, Final Guidance, FDA. * Al-Faruque, F. (2026, May 28). FDA provides additional examples, clarity in human factors guidance. Regulatory Affairs Professionals Society (RAPS). * Lenz, A. R. (2026, June 3). FDA Issues Final Guidance for Content of Human Factors Information in Medical Device Submissions. FDA Law Blog. * Pure Global. (2026, June 2). FDA Human Factors Guidance 2026 Update for Device Submissions. Pure Global Regulatory News. * Regulatory Evolution of Human Factors in Medical Device Submissions: A Comprehensive Analysis of the Final FDA Guidance and Its Quality System Implications. (2026). * Strochlic, A. (2026, May 29). Key Updates in the Final FDA Guidance: Content of Human Factors Information in Medical Device Marketing Submissions (2026). Emergo by UL. This is a public episode. If you'd like to discuss this with other subscribers or get access to bonus episodes, visit naveenagarwalphd.substack.com/subscribe

    Case Study: FDA’s New Expectation for Use-Related Risk in Medical Device Submissions
  6. Jun 12

    LTR 158: Three Questions To Keep Risk Connected to Decisions

    Summary “Tools do not remove uncertainty” In this Let’s Talk Risk! conversation, host Naveen Agarwal speaks with Vilma Nasteckiene, PhD, founder of Holistic Business Risk, about a broader and more human view of risk management. Vilma brings experience from banking, fintech, operational excellence, consulting, research, and business transformation. Her work focuses on reconnecting risk management with the real habits, decisions, tensions, and accountability practices that shape how organizations actually operate. This conversation moves beyond medical device risk management in the narrow technical sense. Instead, it explores risk as a business discipline: how companies grow, how complexity creates silos, how risk becomes disconnected from decision-making, and why mature risk management requires more than procedures, reports, and frameworks. Vilma offers three simple questions for a balanced approach to lifecycle risk management: What are we trying to achieve? What do we rely on to achieve it? How could it fail? The discussion connects directly to medtech, where product lifecycle, organizational lifecycle, regulatory expectations, patient safety, and business sustainability often collide. Listen to the full 30-minute podcast or jump to a section of interest listed below. Chapters 00:00 – Introduction01:10 – Vilma’s journey into holistic business risk02:40 – When risk management drifts away from real business decisions05:55 – What lifecycle risk management means07:20 – Why companies lose risk visibility as they scale09:00 – Applying lifecycle thinking to organizations and products12:45 – Co-creating better risk expectations with regulators and industry15:25 – Mature business practices as risk management practices20:10 – Strategic planning as a risk control22:00 – Three questions for reconnecting risk with decisions25:20 – Why tools do not remove uncertainty27:20 – Closing remarks and key takeaways If you enjoyed this podcast, consider subscribing to the Let’s Talk Risk! newsletter. Suggested links: LTR: Lifecycle Risk Integration Under QMSR. LTR: Different Functions, Different Risk Lenses. LTR: LTR Risk Coach - AI-Powered Decision Support Tool. Key Takeaways * Risk management cannot be separated from business management. If risk is delegated entirely to a risk department, it will eventually lose contact with the decisions that actually create or reduce risk. * Organizations often outgrow their risk management systems. As companies scale, complexity increases. Risk may shift from real-time decision-making into reporting, dashboards, procedures, and post-hoc justification. * Lifecycle thinking applies at more than one level. It applies to the organization, the product, the service, and the regulatory relationship. A startup, a scale-up, and a mature company should not all manage risk in exactly the same way. * More procedures do not automatically mean better risk management. Vilma challenges the idea that visible documentation equals maturity. A company can have many procedures and still fail to connect risk with daily decisions. * Strategic planning can be a powerful risk practice. Growth, profitability, compliance, innovation, and safety can create competing pressures. If those tensions are not addressed at the strategy level, they are pushed down into functions. * Simple questions can reconnect risk to reality. Vilma’s practical questions are: What are we trying to achieve? What do we rely on to achieve it? How could it fail? * Risk maturity is more than frameworks and tools. Tools can help organize uncertainty, but they cannot remove it. They also cannot fully capture hesitation, silence, weak signals, informal concerns, or leadership behavior. * Regulators and industry can reduce “fake fear” by co-creating expectations. Vilma’s fintech example shows the value of bringing regulators, founders, and practitioners into the same room to design risk expectations that reflect real operating maturity. Keywords Risk management, lifecycle risk management, risk maturity, holistic business risk, Vilma Nasteckiene, medtech risk, fintech risk, business risk, strategic planning, operational risk, risk culture, regulatory expectations, weak signals, leadership habits, decision-making, ISO 31000, risk governance, organizational maturity, risk-based thinking, Let’s Talk Risk About Vilma Nasteckiene Vilma Nasteckiene is the founder of Holistic Business Risk and describes her work as helping organizations “unfake and destigmatize risk management.” Her mission is to humanize risk perception and connect business and risk management to the daily habits of resilient, antifragile organizations. She works with managers, regulators, and auditors to connect purpose, client needs, processes, and risk management into visible collaborative practice. Vilma’s background includes banking, credit risk, operational risk, business process management, consulting, research, and system change. She contributed to fintech regulatory requirements and best-practice development in Lithuania, completed PhD research on risk management in management practices, helped initiate national adoption of ISO 31000 and related standards in Lithuania, and co-founded the Lithuanian Association of Risk Management Professionals. Her work emphasizes the practical connection between strategy, accountability, operations, leadership behavior, and risk maturity. Let’s Talk Risk! with Dr. Naveen Agarwal is a bi-weekly live audio event on LinkedIn, where we talk about risk management related topics in a casual, informal way. Join us at 11:00 am EST every other Friday on LinkedIn. Disclaimer Information and insights presented in this podcast are for educational purposes only, and not as legal advice. Views expressed by all speakers are their own and do not reflect those of their respective organizations. Parts of this article were created using AI-generated content, which was subsequently reviewed, edited, and fact-checked by the author to ensure accuracy and alignment with our standards. This is a public episode. If you'd like to discuss this with other subscribers or get access to bonus episodes, visit naveenagarwalphd.substack.com/subscribe

    LTR 158: Three Questions To Keep Risk Connected to Decisions
  7. May 29

    LTR 157: Why Risk Doesn't Get Heard and How to Change That

    Summary “Quality and risk people need to translate safety into business terms.” In this Let’s Talk Risk! conversation, host Naveen Agarwal speaks with Eric Sugalski about how MedTech professionals can communicate safety, risk, and innovation more effectively to senior leaders. Eric brings a broad product-development perspective across engineering, manufacturing, regulatory strategy, commercialization, and early-stage MedTech leadership. He discusses why innovation and safety should not be treated as separate conversations, why risk professionals need to get involved earlier, and how safety-led thinking can reduce rework, improve alignment, and strengthen business outcomes. The conversation also explores the siloed nature of MedTech, the need for cross-functional decision-making, and how QA/RA and risk professionals can increase their influence by connecting safety concerns to revenue, time, market success, and leadership priorities. Listen to the full 30-minute podcast or jump to a section of interest listed below. Chapters 00:00 – Introduction02:40 – Why MedTech innovation is moving faster05:00 – Thinking about safety beyond compliance08:00 – Safety-led innovation as a business advantage11:00 – Bringing safety into early product development13:35 – Communicating risk and safety to senior leaders16:30 – Why quality and risk need a strategic seat earlier18:45 – Translating safety into business terms20:25 – Building cross-functional leadership skills21:40 – MedTech Mindset and deeper industry conversations25:35 – Closing remarks and key takeaways If you enjoyed this podcast, consider subscribing to the Let’s Talk Risk! newsletter. Suggested links: LTR: Learning to Effectively Communicate Regulatory Risk. LTR: How GenAI is Transforming Quality in MedTech. Skool: MedTech Mindset Community by Eric Sugalski. Key Takeaways * Safety can be a driver of innovation, not a constraint. When safety is considered early, it can guide better requirements, reduce rework, and support stronger product decisions. * MedTech teams are still too siloed. Engineering, regulatory, quality, clinical, and commercial teams often work with different definitions of success, which can weaken decision-making. * Risk professionals need to get involved earlier. If quality and risk teams only enter after problems occur, their role stays corrective instead of strategic. * Leadership influence requires business language. Translating safety and risk into time, revenue, delay, rework, and market impact helps leaders understand why action matters. * Professional growth is proactive. Eric emphasizes that MedTech professionals must actively seek cross-disciplinary learning if they want to expand their influence. Keywords MedTech leadership, safety-led innovation, risk communication, medical device product development, quality leadership, regulatory strategy, cross-functional alignment, senior leadership, MedTech startups, business case for safety, patient safety, product development, commercialization, risk management, QA/RA leadership About Erick Sugalski Eric Sugalski is President of Tangram Medtech, where he serves as a fractional VP of Engineering for MedTech companies working to clear FDA, launch manufacturing, and build products that can succeed in the market. His work connects product development with regulatory strategy, manufacturing readiness, clinical considerations, commercial fit, and cross-functional alignment. Eric is also founder and CEO of Ampulis, which partners with pharma companies to design and manufacture combination products, and he is involved as a MedTech investor with Robin Hood Ventures. His background spans product development, prototyping, manufacturing, human factors, regulatory affairs, supply chain, commercialization, and medical device entrepreneurship. Let’s Talk Risk! with Dr. Naveen Agarwal is a bi-weekly live audio event on LinkedIn, where we talk about risk management related topics in a casual, informal way. Join us at 11:00 am EST every other Friday on LinkedIn. Disclaimer Information and insights presented in this podcast are for educational purposes only, and not as legal advice. Views expressed by all speakers are their own and do not reflect those of their respective organizations. Parts of this article were created using AI-generated content, which was subsequently reviewed, edited, and fact-checked by the author to ensure accuracy and alignment with our standards. This is a public episode. If you'd like to discuss this with other subscribers or get access to bonus episodes, visit naveenagarwalphd.substack.com/subscribe

    LTR 157: Why Risk Doesn't Get Heard and How to Change That
  8. May 22

    LTR 156: Using AI as a Thinking Partner in Product Development Without Losing Control

    Summary “AI can be a powerful helper, but it should not be the decision-maker.” In this Let’s Talk Risk! conversation, host Naveen Agarwal speaks with David Grilli about how MedTech teams can use AI responsibly in product development without losing control of risk, quality, or accountability. David brings experience across medical device risk management, system safety, reliability engineering, and regulated product development. He shares practical examples of where AI may help—such as requirements development, software troubleshooting, and early discovery—while emphasizing the need for clear boundaries, human judgment, validation, and leadership oversight. The conversation also explores how teams should define the intended use of AI applications, how to communicate AI proposals to leadership, and why AI should be treated as a cognitive partner rather than an accountable decision-maker. Listen to the full 30-minute podcast or jump to a section of interest listed below. Chapters 00:00 – Introduction03:20 – Where AI is showing up in product development05:00 – Using AI for requirements without giving up decision authority08:45 – Treating AI as a helper, not an accountable decision-maker12:00 – AI for debugging, code review, and software troubleshooting16:00 – Data quality, training inputs, and weak answers17:30 – AI in early discovery and idea-stage development18:40 – Making the leadership case for AI adoption20:55 – Intended use, validation, and QMS expectations22:35 – Where human review belongs in AI-enabled workflows25:40 – David’s key takeaways If you enjoyed this podcast, consider subscribing to the Let’s Talk Risk! newsletter. Suggested links: LTR: Building Trustworthy AI and MedTech Readiness. LTR: What AI/ML Device Recalls Reveal About Emerging Risks. LTR: LTR Risk Coach - AI-Powered Decision Support Tool. Key Takeaways * AI should support judgment, not replace it. David emphasizes that AI can help generate options, identify gaps, and accelerate work, but humans remain accountable for decisions. * Start with high-impact, low-risk use cases. Requirements drafting, debugging, and discovery support may be practical starting points when clear review controls are in place. * Define the intended use before deploying AI. Teams should be clear about what AI is allowed to do, what it is not allowed to do, and where human review is required. * Leadership needs more than enthusiasm. A credible AI proposal should include workflow, expected benefit, risks, mitigations, validation expectations, and decision criteria. * AI adoption is a governance challenge. As AI enters product development, teams must build review points, instructions, and accountability into the development process. Keywords AI in MedTech, artificial intelligence, product development, medical device risk management, ISO 14971, system safety, software validation, design controls, requirements development, human judgment, AI governance, QMS, risk-based decision-making, leadership, product innovation About David Grilli David Grilli is a senior engineering consultant supporting teams building safety-critical, regulated, and operationally complex systems. His background spans more than 15 years across medical device risk management, aviation reliability engineering, and system safety, with experience in ISO 14971, MIL-STD-882, design reviews, hazard analysis, failure-mode analysis, technical justification, and audit readiness. David is also the founder of North Star Haptics, where he applies systems risk, reliability awareness, and human-interface thinking to early-stage tactile technology development. His prior experience includes senior risk management engineering at Abbott and reliability and system safety work at Honeywell. Let’s Talk Risk! with Dr. Naveen Agarwal is a bi-weekly live audio event on LinkedIn, where we talk about risk management related topics in a casual, informal way. Join us at 11:00 am EST every other Friday on LinkedIn. Disclaimer Information and insights presented in this podcast are for educational purposes only, and not as legal advice. Views expressed by all speakers are their own and do not reflect those of their respective organizations. Parts of this article were created using AI-generated content, which was subsequently reviewed, edited, and fact-checked by the author to ensure accuracy and alignment with our standards. This is a public episode. If you'd like to discuss this with other subscribers or get access to bonus episodes, visit naveenagarwalphd.substack.com/subscribe

    LTR 156: Using AI as a Thinking Partner in Product Development Without Losing Control

Ratings & Reviews

5
out of 5
2 Ratings

About

Let’s Talk Risk! brings together MedTech leaders and practitioners for thoughtful conversations on the challenges that shape risk, quality, innovation, and leadership. With 150+ episodes and more than 30K downloads, it helps professionals gain the clarity and confidence to lead through complex decisions. naveenagarwalphd.substack.com

You Might Also Like