Provider Third-Party Risk Management

Event Format

Webinar

Date

Wed, Oct 16, 2019, 01:00 PM – Wed, Oct 16, 2019, 02:00 PM

Cost

Free

Type

Webinars

Event Host

Contact Information

Kristin Oliver
3128952546

Description

Provider Third-Party Risk Management
Best practices for assessing the security posture of your supply chain

Wednesday, October 16, 2019
2 - 3 p.m. Eastern; 1 - 2 p.m. Central; 11 – 12 p.m. Pacific

Effectively assessing the security posture associated with cloud-based services is proving to be prohibitively expensive and difficult to perform. The hurdles faced go well beyond available resources and capabilities, posing a huge challenge for organizations and third parties to create, administer, respond to and manage assessments. In addition, ineffective security, compliance and assurance methods result in increased risk, as well as drive-up cost and confusion within organizations and across third parties.

In this webinar, learn from the American Hospital Association on the various common security frameworks (CSF) available within the health care field and resources available to your health care organization. This webinar will focus on how University of Pittsburgh Medical Center (UPMC) moved to requiring HITRUST CSF certification of its vendors to mitigate risk exposure from third parties providing cloud-based services. You’ll learn how, by using a single framework that covered all of the relevant standards and regulations, UPMC was able to not only assure the security and compliance levels of third parties in maintaining patient data protection, but also simplified assurance processes, reduced costs and maintain clear understanding between the medical center and its vendors.


ATTENDEES WILL LEARN:

  • The various common security frameworks available within the health care field.
  • The value of managing information security-related risks by third parties.
  • Best practices for third-party assurance to reduce costs, simplify processes and minimize confusion with third parties.
  • The mission of the Provider Third-Party Risk Management (PTPRM) Council.
  • High-level information about the HITRUST CSF Certification process as used by the PTPRM Council.


SPEAKERS:


Moderator:
John Riggi
Senior Advisor, Cybersecurity and Risk Advisory Services
American Hospital Association
Washington, DC


John P. Houston, Esq.
Vice President, Privacy and Information Security & Associate Counsel
Information Assurance Services
University of Pittsburgh Medical Center
Pittsburgh, Penn.

Michael Parisi
Vice President, Assurance Strategy & Community Development
HITRUST
Frisco, Texas

Register