Why Your Vendors Are Your Biggest HIPAA Privacy Risk
Kathleen Randall, EVP North America CISSP, CISA, GSNA and Ben Dalton, Senior Technical Consultant
In the past, healthcare organizations have paid lip service to HIPAA’s privacy requirements for third party vendors, or “business associates.” As data breaches and malware continue to cripple healthcare institutions, many are realizing that their weakest links may be out of their control and in their vendor’s hands. How can you be assured that your ePHI data is in safe hands? By asking the right questions. Industries like finance, insurance, energy have managed third party risk programs for years. In this webinar learn how industry best practices can be incorporated to not only meet HIPAA requirements but also give visibility to manage your external risk to your healthcare organization.
Read more >
The session will cover:
• Managing the risk of your Business Associates (and the risk of their Business Associates)
• Case Studies: Vendors as a common source of breaches
• Before you sign off on the Business Associate Agreement, what you should be doing?
• Work smarter, not harder: How to drive a cost-effective and OCR-compliant process.