11/15/2024
When:	1:00 PM
Where:	United States
Contact:	info@ahia.org (856) 554-1083

(Noon - 1:00 pm CT/11:00 am - Noon MT/10:00 am - 11:00 am PT)

 

Webinar: Considerations in Conducting Third-Party Risk Assessments: EHR Vendor Case-study

 

 

 

 

 

Kevin is an experienced health care consulting director in RSM’s risk consulting practice with over fifteen years of experience in Health Care industry. Kevin’s primary focus is working with Health Care organizations to develop auditing & monitoring strategies, execute compliance-focused programs and maintain strong enterprise risk management governance.

Kevin’s health care experiences include serving clients as outsourced internal audit / compliance leader overseeing audit & monitoring functions end-to-end and conducting enterprise-wide risk assessments in order to identify risk mitigation & process improvement opportunities and present results to leadership to ensure alignment to organization’s strategic goals & risk management needs.

 

Christopher is an experienced health care consulting manager in RSM’s risk consulting practice. He is a certified project manager (PMP) and healthcare internal auditor (CHIAP) with over 10 years of experience providing strategic risk, regulatory compliance, internal audit, enterprise risk management, and operational improvement services to federal and commercial health care organizations.

Christopher’s experience includes strategic / compliance / operational consulting engagements with national health systems, academic medical centers, children’s hospitals, and retail health care and life sciences (pharmacy) organizations, as well state and federal organizations and agencies.

 

Ryan serves as the national leader for the health care internal audit, regulatory compliance and enterprise risk practices. He has more than 20 years of experience as a trusted leader and strategic advisor to the health care industry. In his role, Ryan advises health care organization management teams and their boards on the implications of emerging industry risks and disruptive regulatory events and is responsible for leading risk advisory projects for nonprofit, private, and public companies in the health care sector.

Ryan is a presenter with the Institute of Internal Auditors, Association of Healthcare Internal Auditors, Health Care Compliance Association, and Healthcare Financial Management Association.

 

 

As healthcare organizations continue to expand both in size and complexity, reliance on third-party business partners across patient and non-patient facing functions has grown, thus increasing both the types (clinical, financial, operational, reputational) and levels of risks to the organization.  The increasing risk and reliance on third-party partners have caused organizations to develop third-party risk management (TPRM) programs or other types of vendor management-related functions to evaluate and mitigate the risks introduced over the course of the relationship. However, with ever-increasing costs and reliance on third-party products and services, across a multitude of complex contractual agreements, addendums, and service level agreements (SLAs), these programs often do not have the necessary resources and processes aligned to effectively manage and monitor the applicable third-party risks.  In this session we will review how Internal Audit can support the organization with understanding, preparing for, and responding to the challenges and risks associated with third-party risk management.  We will discuss potential internal audit approaches to assess TPRM program governance and structure, policies and procedures, risk mitigation frameworks, and tools and techniques in place across the third-party relationship lifecycle.  To facilitate understanding of the concepts, we will present a deep-dive case study of a TPRM internal audit focused on a critical vendor providing Electronic Health Records technology and managed services.