Vendor Risk Management: Why What You Don’t Know Can Hurt You
In this article, we explore the framework for ComplyAssistant’s VRM capabilities and how it works to help businesses of every size identify and mitigate third-party risk.
NJ HIMSS CMIO Series – Angela Yochem of Novant Health – Innovative Digital Transformation Leadership – Sponsored by ComplyAssistant
The New Jersey HIMSS Digital Transformation podcast series continues with an in-depth discussion with a national leader on the topic. This episode’s guest is Angela Yochem, Chief Transformation and Digital Officer at Novant Health and Chief Operating Officer and General Manager of Novant Health Enterprises. Join your NJ HIMSS host, Jim Hennessy, CEO of e4 Services, as he […]
Podcast: Q&A with St. Joseph’s Health CISO Jesse Fasolo: “The Transition to Being Fully Cloud-hosted Is Still Years Away.”
ComplyAssistant client, Jesse Fasolo believes there are two types of leaders: those who “sit back and allow the vendor to come to them when they need something,” and those who do the legwork. In fact, by the time he speaks with a prospective partner, he has already done his due diligence, Fasolo said in an […]
First Annual ViVE Conference: Reactions and Takeaways
ComplyAssistant’s Ken Reiher attended the first annual ViVE Conference and had the following reaction and takeaway noted by Health IT Answers in their “First Annual ViVE Conference: Reactions and Takeaways” article. “Throughout my career, I have attended several healthcare conferences but, ViVE was a little different. Since the majority of attendees have not attended a […]
Amid rising cyberattacks, a more discreet trend: EHR snooping
ComplyAssistant’s Gerry Blass comments on ways to mitigate rising cyberattacks in Fierce Healthcare’s “Amid rising cyberattacks, a more discreet trend: EHR snooping” article from March 7, 2022. “Though most systems are not likely to completely block access to medical records, they can include tools like break-the-glass, which offers a warning as a deterrent before allowing […]
Mitigate Risk While Preparing for the Future: Why You Need a DRBC Plan
An article released by Gartner reported that by the year 2025, cyberattackers will have weaponized operational technology (OT) environments to successfully harm or kill humans. OT attacks, also known as attacks on hardware and software that monitors or controls equipment, assets, and processes, are on the rise. Consider the ransomware attack on the Colonial Pipeline, for example. Effects were felt up and down the East Coast, resulting in a payout of $4.4 million and damage to hospitals, emergency medical services, and law enforcement agencies.
8 Questions to Help you Choose the Best GRC Software Solutions for your Company
When looking for a new GRC software platform, it’s important to have one with all the latest features including task management, audits, and more.
Creating a Game Plan for Vendor Risk Management
Gerry Blass on Healthcare Vendor Risk Management (Podcast)
Healthcare risk doesn’t stop at the facility’s door. Covered entities have countless business associates (BA), each of which poses risks of its own. That, in and of itself, is a challenge, but Gerry Blass, President and CEO of ComplyAssistant observes in this podcast that many covered entities aren’t even sure of their complete list of vendors, let alone the risks that can reside in them.
Technology Expert Jesse Fasolo Highlights Cybersecurity Threats to Healthcare (Interview)
ComplyAssistant client St. Joseph’s Health’s Jesse Fasolo, PhD student, director, technology infrastructure & cybersecurity, information security officer, said Information security is changing so fast, healthcare systems need to work on shorter strategies so they can pivot to what’s current.