Securing Healthcare.gov & Tackling Fourth-Party Vendor Risks
Manage episode 332994093 series 3052259
Join us for this episode of The CyberPHIx podcast where we hear from Bart Layton, VP of Product for CORL Technologies, who was also a leader on the team that overhauled and secured healthcare.gov.
In this two-part conversation, we discuss Bart’s insights into the deployment and security of healthcare.gov as well as his perspectives on third- and fourth-party cyber risks for healthcare organizations.
About Healthcare.gov
Healthcare.gov is the nation's federal exchange for health insurance coverage that was created from the passing of the Patient Protection and Affordable Care Act (ACA). The initial launch of the website was fraught with challenges and was ultimately "rescued" by a large team contracted to get the site operating in tip-top shape.
About Fourth-Party Vendor Risks
Cybercriminals and nation-states have also unleashed relentless cyber-attacks on the U.S. healthcare industry and its suppliers this year. Unfortunately, cyber risk exposures have not been limited to third-party vendors, and risks to sensitive data and systems often extend across the full supply chain including fourth-party vendors and open-sourced products.
Topics covered in this session include:
- What is healthcare.gov?
- How and why was healthcare.gov overhauled in the early stages of its development?
- Security challenges and solutions for healthcare.gov that arose during implementation
- Cloud security considerations for hosted healthcare applications including healthcare.gov
- What is fourth-party vendor risk and how is it impacting healthcare organizations?
- Examples and case studies of prominent fourth-party vendor breaches in healthcare
- Emerging solutions and innovations in third- and fourth-party vendor risk management
- New federal regulations and standards for managing supply chain risks
99 에피소드