Supply Chain and Third-Party Risks During COVID-19

Carrie Whysall

Carrie Whysall, Director of Managed Security Services for CynergisTek discuss supply chain and third-party risks and why managing the level of risk brought into your organization is so important. Carrie breaks down the impacts your organization could be facing due to the COVID-19 pandemic. She will examine the importance of vendor security management and the process of building and maintaining relationships with your vendors to ensure you have a clear understanding of the services being provided and the risks that may be inherent in that relationship with the vendor, especially in regards to new telehealth vendors you may be using during the COVID pandemic. Carrie will also discuss what an effective VRM program entails and how your VRM program can help you determine, manage, and monitor potential third-party risks.

About the Author

Carrie Whysall is the Director of Managed Security Services (CISM) for CynergisTek. Carrie is a proven IT executive leader with a solid track record of HIPAA enforcement and security assurance. With a depth of expertise in the management and implementation of strategic security programs that provide operational excellence. Acknowledged for exceptional performance in process improvements change management and facilitation of multiple projects while ensuring security compliance.
Follow on Linkedin More Content by Carrie Whysall

Insights Center

Supply Chain and Third-Party Risks During COVID-19

About the Author

Previous Article

Next Article

Supply Chain and Third-Party Risks During COVID-19

About the Author

Previous Article

Next Article

Other content in this Stream

iFixit has provided consumers with mountains of literature including manuals. Should the medical device community have access to service materials as well?

The OCR recently issued guidance reminding health care providers that the COVID-19 emergency has not changed the federal health privacy protections.

Cyberwire’s latest podcast features Caleb Barlow as he discusses Iranian cyberespionage against Saudi Arabia and Kuwait. The latest evolution of ZeuS.

In part 4 of this blog series, Marti Arvin discusses compliance considerations around the waivers that the (CMS) has issued for the healthcare industry.

In part 3 of this blog series, Marti Arvin discusses compliance considerations around the waivers that the (CMS) has issued for the healthcare industry.

In part 2 of this blog series, Marti Arvin discusses compliance considerations around the waivers that the (CMS) has issued for the healthcare industry.

Marti Arvin discusses compliance considerations around the waivers that the (CMS) Center for Medicare and Medicaid Services has issued for the healthcare industry.

There is no doubt that the U.S. is in an unprecedented time right now. As of early-March 2020, the federal government in the United States has taken the unheard-of action to have every single...

Matt Dimino's latest blog discusses how to practice good cyber hygiene for medical equipment when it comes to the current COVID-19 pandemic.

David Holtzman discusses tips on how to keep secure remote worksites, telehealth video, and messaging during the COVID-19 Outbreak.

How Clinical Engineering Can Address Medical Device Shortages Many may not realize or understand how these difficult times during the COVID-19 crisis influence the extensive and unique use of...

Our team of our experts puts together a checklist to help organizations plan for an incident response during the COVID-19 crisis. They discuss 30/60/90 day planning around privacy and security.

Mobile, walk-up and drive-through COVID-19 testing sites operated by hospitals, healthcare providers, and pharmacy chains are the latest beneficiaries of a series of targeted measures to relax...

Things are changing rapidly in the current regulatory environment and that is true for telehealth as well. On March 13, 2020 the President declared the coronavirus pandemic a national emergency....

The unprecedented times we are living in continue to evolve. In a rare move, the U.S. Department of Homeland Security (DHS), the Cybersecurity and Infrastructure Security Agency (CISA), and the...

Learn how CynergisTek is at the forefront of medical device security management and maintaining the privacy and security of medical devices and your data is a paramount concern.

Background on Incident Response During Coronavirus Pandemic The coronavirus pandemic has pushed many healthcare organizations to allow an increased number to shift to a remote workforce...

This checklist explains a 30/60/90 day plan from a CISO’s perspective during the COVID-19 crisis! Check out the full list today!

It might be tempting for covered entities and business associates to put-off some of their regulatory or compliance obligations as other priorities evolve in the current crisis. Whether to do that...

In a pair of sweeping directives that will have far reaching implications for healthcare providers and their patients, the Office for Civil Rights (OCR) issued guidance and FAQs through which the...