This is especially true in the highly regulated healthcare industry, which has to store and protect medical records and other highly sensitive patient data. Compliance Week recently caught up with two senior-level executives—one in compliance, one in information security—at LifePoint Health, which employs nearly 60,000 people and operates community hospitals, regional health systems, physician practices, and outpatient centers across 29 states.
Our Q&A with the recently hired Ellen Hunt, the company’s VP for compliance program operations and chief privacy officer (and a compliance veteran of more than 15 years), and Andy Heins, VP and chief information security officer (CISO), centered on how compliance and cyber-security work together at LifePoint, why a holistic approach to risk management makes for a more agile organization, and much more.
Q: Can you each describe your roles in simple terms?
Hunt: The role of compliance is to enhance and protect the reputation of the organization by identifying and mitigating risk. At its core, compliance’s mission is to help the organization, and the people in it, make the best ethical decisions.
Heins: The role of…
