Supply Chain and Third-Party Risks During COVID-19

Carrie Whysall

Carrie Whysall, Director of Managed Security Services for CynergisTek discuss supply chain and third-party risks and why managing the level of risk brought into your organization is so important. Carrie breaks down the impacts your organization could be facing due to the COVID-19 pandemic. She will examine the importance of vendor security management and the process of building and maintaining relationships with your vendors to ensure you have a clear understanding of the services being provided and the risks that may be inherent in that relationship with the vendor, especially in regards to new telehealth vendors you may be using during the COVID pandemic. Carrie will also discuss what an effective VRM program entails and how your VRM program can help you determine, manage, and monitor potential third-party risks.

About the Author

Carrie Whysall is the Director of Managed Security Services (CISM) for CynergisTek. Carrie is a proven IT executive leader with a solid track record of HIPAA enforcement and security assurance. With a depth of expertise in the management and implementation of strategic security programs that provide operational excellence. Acknowledged for exceptional performance in process improvements change management and facilitation of multiple projects while ensuring security compliance.
Follow on Linkedin More Content by Carrie Whysall

Insights Center

Supply Chain and Third-Party Risks During COVID-19

About the Author

Previous Article

Next Article

Supply Chain and Third-Party Risks During COVID-19

About the Author

Previous Article

Next Article

Other content in this Stream

The threat of a ransomware incident in healthcare looms over the minds of many healthcare, executives and boards. Those who have already had the misfortune to deal with a ransomware incident will like

CynergisTek's offensive security services test an organization's environment and people to validate the effectiveness against cyber attacks.

In this episode, we get to know Rob Teague, Information Security Engineer at CynergisTek, and CMMC Registered Practioner at Redspin, CynergisTek's non-healthcare division.

In this infographic, we depict Microsoft Exchange Server Breach response procedures if exploitation activity is discovered.

Caleb Barlow is back to discuss ransomware within the healthcare industry, and this time he is joined by Marti Arvin. Together the two discuss ransomware within the healthcare industry beyond.

A quick video message from our CEO, Caleb Barlow regarding the Microsoft breach. More than 30,000 organizations have been hit by the Microsoft Exchange Server Breach and we’ve heard from some of our c

Read our case study that breaks down a Security Control Validation Assessment (SCVA) which was performed to challenge the assumptions on our clients' security posture.

An informal roundtable discussion of the implementation woes related to the ONC Information Blocking rule with a brief overview of the rule and a facilitated Q&A hosted and facilitated by Marti Arvin.

The market for working with a security consulting partner has increased. Working with a security consulting partner can help your cybersecurity strategy.

While the concept of security validation has been around for some time, at CynergisTek we recommend that security validation become the ethos of all organizations to strengthen one’s cyber hygiene.

WIth security and privacy integration risks in mergers and acquisitions, knowing the right questions to ask and understanding the answers being provided could be the key to making the deal happen.

Learn the fundamentals of the ONC Information Blocking rule and CMS Interoperability rule for providers and what you need to know going into 2021.

CynergisTek, Inc.’s Chief Information Security Officer (CISO), Thomas Graham gives his outlook and provides recommendations on this egregious hack of a lifetime.

In this white paper, CynergisTek and Asimily have outlined the challenges stakeholders are dealing with from addressing business needs, execution of strategy, and meeting missions and objectives.

A technical session on “API & Information Blocking: Where are your risks and what you can do to prepare” to learn about how to identify security vulnerabilities for CTEK Subject Matter experts.

API Sentry is an on-going managed service bringing visibility to the security health of third party and in-house APIs.

With the announcement last week from the Department of Health and Human Services (HHS), Cybersecurity and Infrastructure Security Agency (CISA), and the Federal Bureau of Investigation (FBI) on...

On October 28th, the Department of Health and Human Services (HHS) coordinated a call with the CISA and the FBI about an increased and imminent cyber threat to US hospitals and healthcare providers.

Security Control Validation Assessment measures the capability of your security teams, processes, and technology to determine the organization's overall business risk.

Adversary Validation discovers vulnerabilities with no disruption to network operations and allows your organization to remediate before the malicious hacker can exploit your environment.