During this session, we will discuss the key elements and importance of an integrated Third-Party Risk Management (TPRM) program with an emphasis on the evolving regulatory and compliance landscape. The session will also explore how weak third-party diligence can lead to significant data exposure and how organizations can mitigate these risks through best practices and governance.

Learning objectives: 

• Understand the importance of TPRM in healthcare,
• Review recent incidents and regulatory focus areas, Define and categorize types of third parties (e.g., IT vendors, medical device manufacturers, outsourced service providers).
• Identify regulatory and compliance requirements
• Explore the core elements of a TPRM program lifecycle:
• Examine the impact of weak third-party cybersecurity diligence
• Learn best practices to reduce risk of data exposure,
• Understand the coordination of internal stakeholders