Cloud Security Alliance guide describes risks to everything from patient privacy to an organization’s reputation.
Healthcare organizations looking for guidance on managing third-party vendor security risks have a new resource, thanks to the Cloud Security Alliance (CSA).
Third-Party Vendor Risk Management in Healthcare gives an overview of these security risks, and offers guidance on identifying, assessing, and mitigating third-party vendor risks going forward.
Examples of risks, use cases, and tools for managing these risks are included in this toolkit. Different types of risk are described, including cybersecurity, reputational, compliance, privacy, operational, strategic, and financial.
“Healthcare delivery organizations entrust the protection of their sensitive data, reputation, finances, and more to third-party vendors,” James Angle, the paper’s lead author and co-chair of CSA’s Health Information Management Working Group, said in a press release. “Given the importance of this critical, sensitive data, combined with regulatory and compliance requirements, it is crucial to identify, assess, and reduce third-party cyber risks. These risks are even more prevalent in the…
