Series
Summer CPE Symposium
The PYA Summer CPE Symposium is a complimentary, two-day virtual event designed for healthcare professionals, offering four expert-led sessions on key industry topics. Participants will gain valuable insights on reimbursement, healthcare compliance, audit and accounting, and cybersecurity, along with practical takeaways and tools. Hosted by PYA thought leaders, the symposium offers CPE credits, and attendees can register for as many sessions as they choose.
What is Third-Party Risk Management in healthcare, and why is it important?
Third-Party Risk Management (TPRM) helps healthcare organizations reduce cybersecurity, compliance, and privacy risks posed by vendors and service providers. This webinar explains key TPRM program elements—including risk assessment, due diligence, and governance—and how they address HIPAA, FDA, and other regulatory requirements.
Cyberattacks, ransomware, supply chain shortages, privacy breaches, and the resulting regulatory focus, fines, and penalties have all demonstrated the critical importance of a robust Third-Party Risk Management Program (TPMP) for healthcare entities of all sizes.
During this session, Lori Foley discussed the key elements and importance of an integrated Third-Party Risk Management (TPRM) program, with an emphasis on the regulatory and compliance landscape.
Specifically, attendees learned from these key points:
- Importance of TPRM in healthcare
- Brief overview of recent incidents or regulatory focus areas
- Definition and types of third parties (e.g., IT vendors, medical device manufacturers, outsourced service providers)
- Regulatory and compliance requirements pertaining to third-party vendors (e.g., BAAs, HIPAA, FDA)
- Core elements of a TPRM program lifecycle (inventory, risk assessment, due diligence, contracting, and ongoing monitoring)
- Coordination of parties in identification and mitigation of risks (e.g., internal audit, compliance, legal, quality, risk management, IT)
- Recommendations for appropriate governance oversight
