During this session, we will discuss the key elements and importance of an integrated Third-Party Risk Management (TPRM) program with an emphasis on the evolving regulatory and compliance landscape. The session will also explore how weak third-party diligence can lead to significant data exposure and how organizations can mitigate these risks through best practices and governance.
Registration Pricing
Member Group (Unlimited connections from your organization): $125
Non-Member Group (Unlimited connections from your organization): $175
Who should attend:
Hospital Trustees and Executive Leadership in Texas.
Learning Objectives:
- Understand the importance of TPRM in healthcare,
- Review recent incidents and regulatory focus areas, Define and categorize types of third parties (e.g., IT vendors, medical device manufacturers, outsourced service providers).
- Identify regulatory and compliance requirements
- Explore the core elements of a TPRM program lifecycle:
- Examine the impact of weak third-party cybersecurity diligence
- Learn best practices to reduce risk of data exposure,
- Understand the coordination of internal stakeholders
- Receive recommendations for appropriate governance oversight, including board-level reporting and escalation protocols.
Continuing Education:
American College of Healthcare Executives
By attending the Physician Credentialing: How-To and Common Mistakes Webinar offered by Texas Hospital Association participants may earn up to 1.0 ACHE Qualified Education Hours toward initial certification or recertification of the Fellow of the American College of Healthcare Executives (FACHE) designation.
Certified Healthcare Trustees and Leaders Education
The Texas Healthcare Trustees designates this continuing certified healthcare trustee and leader education activity for up to 1.0 contact hours. For more information about the CHTL program, please contact THT at 512-465-1000.
Faculty
Barry Mathis, Consulting Principal, Information Technology, PYA
Barry has over three decades of experience in the information technology (IT) and healthcare industries as a CIO, CTO, senior IT audit director, and IT risk management consultant. He has planned and managed complicated HIPAA security reviews and audits for some of the most sophisticated hospital systems in the country. Barry is a visionary, results-oriented, senior-level healthcare executive with demonstrated experience in planning and implementing information technology solutions. He is adept at strategic development, project and crisis management, and negotiation. Barry’s strong technical capabilities combined with outstanding presentation skills have made him a sought-after speaker at many conferences and events.
Shannon Sumner, Consulting Principal, Firm Chief Compliance Officer, Managing Principal, PYA
Shannon is a nationally recognized healthcare compliance expert. With more than 30 years of experience in healthcare internal auditing and regulatory compliance, she helps healthcare organizations of all sizes strengthen their compliance programs. She steers clients through regulatory compliance issues, develops effective internal control structures, and conducts due diligence for mergers/acquisitions/divestitures. The U.S. Department of Justice recognized her expertise and sought her input in a history-making federal compliance co-monitorship case.