3rd Party Risk Management , Governance & Risk Management
Managing Supply Chain Challenges During the COVID-19 Crisis
Daniel Bowden, CISO of Sentara Healthcare, Discusses Third-Party Risk ManagementWhile responding to the COVID-19 crisis, supply chain risks can be better managed if an organization continues to rely on its longtime vendors, says Daniel Bowden, CISO at Sentara Healthcare, who offers insights on third-party security risk management in the current environment.
For hospitals, shortages of certain supplies, such as protective masks, ventilators and more - continue to grow, he says in an interview with Information Security Media Group.
"In terms of how we receive and treat potential COVID-19 patients ... and because we have to respond so quickly - we're trying to keep all those supply chain variables very much known with suppliers and options we already use," he says.
The CISO points out: "We haven't run into a situation yet where we're using a brand new supplier that may bring in new risk vectors in terms of confidentiality, integrity or availability [of health data]," he says. "But when that does happen, I'm confident that our organization will have the appropriate risk discussion."
In this interview (see audio link below photo), Bowden also discusses:
- The risks posed by different kinds of vendors;
- Addressing vendor security risk management challenges during a crisis;
- Why his organization is investigating new identity and access management technologies.
Bowden is vice president and CISO at Sentara Healthcare, a not-for-profit healthcare organization serving Virginia and northeastern North Carolina with 12 acute care hospitals, 10 nursing centers and three assisted living facilities. He has led cybersecurity and technology programs for healthcare, higher education, banking, retail and the military for the past 25 years.