CIO Podcast – Risk Management & Cybersecurity with Jesse Fasolo
Podcast with St. Joseph’s Health CISO Jesse Fasolo discussing risk managemen and cybersecurity.
Podcast with St. Joseph’s Health CISO Jesse Fasolo discussing risk managemen and cybersecurity.
In this article, we explore the framework for ComplyAssistant’s VRM capabilities and how it works to help businesses of every size identify and mitigate third-party risk.
ComplyAssistant client, Jesse Fasolo believes there are two types of leaders: those who “sit back and allow the vendor to come to them when they need something,” and those who do the legwork. In fact, by the time he speaks with a prospective partner, he has already done his due diligence, Fasolo said in an […]
ComplyAssistant’s Gerry Blass comments on ways to mitigate rising cyberattacks in Fierce Healthcare’s “Amid rising cyberattacks, a more discreet trend: EHR snooping” article from March 7, 2022. “Though most systems are not likely to completely block access to medical records, they can include tools like break-the-glass, which offers a warning as a deterrent before allowing […]
An article released by Gartner reported that by the year 2025, cyberattackers will have weaponized operational technology (OT) environments to successfully harm or kill humans. OT attacks, also known as attacks on hardware and software that monitors or controls equipment, assets, and processes, are on the rise. Consider the ransomware attack on the Colonial Pipeline, for example. Effects were felt up and down the East Coast, resulting in a payout of $4.4 million and damage to hospitals, emergency medical services, and law enforcement agencies.
When looking for a new GRC software platform, it’s important to have one with all the latest features including task management, audits, and more.
Healthcare risk doesn’t stop at the facility’s door. Covered entities have countless business associates (BA), each of which poses risks of its own. That, in and of itself, is a challenge, but Gerry Blass, President and CEO of ComplyAssistant observes in this podcast that many covered entities aren’t even sure of their complete list of vendors, let alone the risks that can reside in them.
In today’s ever-changing cyber landscape, we talk a lot about what measures to take if you have experienced a data breach or ransomware attack. Who do I call if my patient’s health information has been comprised? Do I need to pay the ransom? How long will my organization be down and disrupt the continuity of care?