Supply Chain and Third-Party Risks During COVID-19

Carrie Whysall

Carrie Whysall, Director of Managed Security Services for CynergisTek discuss supply chain and third-party risks and why managing the level of risk brought into your organization is so important. Carrie breaks down the impacts your organization could be facing due to the COVID-19 pandemic. She will examine the importance of vendor security management and the process of building and maintaining relationships with your vendors to ensure you have a clear understanding of the services being provided and the risks that may be inherent in that relationship with the vendor, especially in regards to new telehealth vendors you may be using during the COVID pandemic. Carrie will also discuss what an effective VRM program entails and how your VRM program can help you determine, manage, and monitor potential third-party risks.

About the Author

Carrie Whysall is the Director of Managed Security Services (CISM) for CynergisTek. Carrie is a proven IT executive leader with a solid track record of HIPAA enforcement and security assurance. With a depth of expertise in the management and implementation of strategic security programs that provide operational excellence. Acknowledged for exceptional performance in process improvements change management and facilitation of multiple projects while ensuring security compliance.
Follow on Linkedin More Content by Carrie Whysall

Insights Center

Supply Chain and Third-Party Risks During COVID-19

About the Author

Previous Article

Next Article

Supply Chain and Third-Party Risks During COVID-19

About the Author

Previous Article

Next Article

Other content in this Stream

With the announcement last week from the Department of Health and Human Services (HHS), Cybersecurity and Infrastructure Security Agency (CISA), and the Federal Bureau of Investigation (FBI) on...

On October 28th, the Department of Health and Human Services (HHS) coordinated a call with the CISA and the FBI about an increased and imminent cyber threat to US hospitals and healthcare providers.

Security Control Validation Assessment measures the capability of your security teams, processes, and technology to determine the organization's overall business risk.

Adversary Validation discovers vulnerabilities with no disruption to network operations and allows your organization to remediate before the malicious hacker can exploit your environment.

The Security Awareness Tips list allows you to download, customize, and share tips and best practices to your clients to give them insight on how they can protect their data.

Ransomware is a trending topic for healthcare in 2020. The following checklist delivers tips and best practices to enhance your posture when dealing with ransomware.

Our third annual report, Moving Forward: Setting the Direction, our analysts combed through data of the nearly 300 assessments performed to show the state of healthcare security in 2020.

CTEK & Healthlink Advisors experts discuss the considerations for healthcare providers as it relates to the regulations around information blocking for the upcoming CMS 2020 Interoperability Rule.

CTEK & Healthlink Advisors experts discuss the considerations for healthcare providers as it relates to the regulations around information blocking for the upcoming CMS 2020 Interoperability Rule.

The below infographic depicts the results of survey findings and links to additional telehealth pointers for both patients and providers from a survey conducted in June of 2020.

This infographic describes important telehealth safety tips providers need to consider before offering telehealth services.

Our infographic describes important Telehealth safety questions patients need to ask their provider before a telehealth appointment.

How are threat actors targeting healthcare providers? Where do healthcare regulations and cybersecurity frameworks intersect and how do they benefit from each other? Why should clinics and hospitals m

With the start of enforcement of the California Consumer Privacy Act (CCPA) arriving in a few days, the journey to adoption of the implementing regulations are moving at a snail’s pace.

iFixit has provided consumers with mountains of literature including manuals. Should the medical device community have access to service materials as well?

The OCR recently issued guidance reminding health care providers that the COVID-19 emergency has not changed the federal health privacy protections.

In part 4 of this blog series, Marti Arvin discusses compliance considerations around the waivers that the (CMS) has issued for the healthcare industry.

In part 3 of this blog series, Marti Arvin discusses compliance considerations around the waivers that the (CMS) has issued for the healthcare industry.

In part 2 of this blog series, Marti Arvin discusses compliance considerations around the waivers that the (CMS) has issued for the healthcare industry.

Marti Arvin discusses compliance considerations around the waivers that the (CMS) Center for Medicare and Medicaid Services has issued for the healthcare industry.