A group of experts in cybersecurity, device policy and regulation, and informed consent have collaborated on defining a framework for cybersecurity informed consent (CIC). The goal is to help people understand the cybersecurity issues related to medical devices that can be connected to the internet. Any connected and/or implantable medical device has cybersecurity vulnerabilities, which means they need an informed consent process. In this talk for DEF CON 28, Meg Doerr, principal scientist at Sage Bionetworks, shares context for the need for CIC and how she and her many collaborators are approaching the development of a framework.