• Login
    • Join
  • FOLLOW:
  • Subscribe Free
    • Magazine
    • eNewsletter
    Checkout
    • Magazine
    • News
    • Opinions
    • Top 30
    • Research
    • Supply Chain
    • Device Sectors
    • Directory
    • Events
    • Resources
    • Microsites
    • More
  • Magazine
  • News
  • Opinions
  • Top 30
  • Research
  • Supply Chain
  • Device Sectors
  • Directory
  • Events
  • Resources
  • Microsites
  • Current / Back Issues
    Features
    Editorial
    Digital Edition
    eNewsletter Archive
    Our Team
    Editorial Guidelines
    Reprints
    Subscribe Now
    Advertise Now
    Top Features
    Computer Concepts for Medical Device Design

    IVD Manufacturers Are Being Put to the Test

    The New State of Medtech Outsourcing

    The Changing Face of Medtech Surface Treatment

    The Totally Tubular Technologies that Support Medical Devices
    OEM News
    Supplier News
    Service / Press Releases
    Online Exclusives
    Press Releases
    People in the News
    Product & Service Releases
    Supplier News
    Medtech Makers
    Technical Features
    International News
    Videos
    Product & Service Releases
    Live From Shows
    Regulatory
    Financial/Business
    Top News
    FundamentalVR Launches All-In-One Software Development Kit

    Meridian Medical Technologies Expanding Missouri Facility

    Attune Medical, Heart Rhythm Clinical Research Solutions Evaluating ensoETM Device

    Glooko, Hedia Teaming Up on Personalized Diabetes Care

    Establishment Labs' Mia Femtech Debuts in Japan
    From the Editor
    Blogs
    Guest Opinions
    Top Opinions
    Computer Concepts for Medical Device Design

    IVD Manufacturers Are Being Put to the Test

    The New State of Medtech Outsourcing

    The Changing Face of Medtech Surface Treatment

    The Totally Tubular Technologies that Support Medical Devices
    Top 30 Medical Device Companies
    Market Data
    White Papers
    Top Research
    Checking Up on Surgical Robotics

    Building a Network: How Synchron Is Developing a New Device—and a New Market

    Six Lessons Learned on Developing a Strong Company Culture

    As Hiring Slows, Companies Look Inward to Fulfill Talent Needs

    Artificial Intelligence: Medtech Opportunity or Health Danger?
    3D/Additive Manufacturing
    Contract Manufacturing
    Electronics
    Machining & Laser Processing
    Materials
    Molding
    Packaging & Sterilization
    R&D & Design
    Software & IT
    Testing
    Tubing & Extrusion
    Cardiovascular
    Diagnostics
    Digital Health
    Neurological
    Patient Monitoring
    Surgical
    Orthopedics
    All Companies
    Categories
    Company Capabilities
    Add New Company
    Outsourcing Directory
    NDH Medical Inc.

    JBC Technologies

    Medbio LLC

    Providence Enterprise USA Inc.

    Cirtec Medical
    MPO Summit
    Industry Events
    Webinars
    Live From Show Event
    Industry Associations
    Videos
    Career Central
    eBook
    Slideshows
    Top Resources
    6 Considerations for Companies on the Cusp of Being Acquired

    3 Key Elements to Consider When Managing a Medtech Sales Force

    Tech-Enabled Virtual Speech Therapy Improves Speech & Communication Skills

    Practical Strategies for Digitization and Integration in Medtech Manufacturing

    Sensors: The Heart of Minimally Invasive Equipment Technology
    Companies
    News Releases
    Product Releases
    Press Releases
    Product Spec Sheets
    Service Releases
    Case Studies
    White Papers
    Brochures
    Videos
    Outsourcing Directory
    NDH Medical Inc.

    JBC Technologies

    Medbio LLC

    Providence Enterprise USA Inc.

    Cirtec Medical
    • Magazine
      • Current/Back Issues
      • Features
      • Editorial
      • Columns
      • Digital Editions
      • Subscribe Now
      • Advertise Now
    • News
    • Directory
      • All Companies
      • ALL CATEGORIES
      • Industry Associations
      • Company Capabilities
      • Add Your Company
    • Supply Chain
      • 3D/Additive Manufacturing
      • Contract Manufacturing
      • Electronics
      • Machining & Laser Processing
      • Materials
      • Molding
      • Packaging & Sterilization
      • R&D & Design
      • Software & IT
      • Testing
      • Tubing & Extrusion
    • Device Sectors
      • Cardiovascular
      • Diagnostics
      • Digital Health
      • Neurological
      • Patient Monitoring
      • Surgical
      • Orthopedics
    • Top 30 Company Report
    • Expert Insights
    • Slideshows
    • Videos
    • eBook
    • Resources
    • Podcasts
    • Infographics
    • Whitepapers
    • Research
      • White Papers
      • Case Studies
      • Product Spec Sheets
      • Market Data
    • MPO Summit
    • Events
      • Industry Events
      • Live From Show Events
      • Webinars
    • Microsite
      • Companies
      • Product Releases
      • Product Spec Sheets
      • Services
      • White Papers / Tech Papers
      • Press Releases
      • Videos
      • Literature / Brochures
      • Case Studies
    • About Us
      • About Us
      • Contact Us
      • Advertise with Us
      • eNewsletter Archive
      • Privacy Policy
      • Terms of Use
    Online Exclusives

    5 Lessons Learned: Avoiding the Quest Data Breach

    Quest Diagnostics and LabCorp's recent security breaches stress the importance of taking third-party risk seriously.

    5 Lessons Learned: Avoiding the Quest Data Breach
    Jon Siegler, Chief Product Officer, LogicGate07.29.19
    In June, both Quest Diagnostics and LabCorp announced breaches via the American Medical Collection Agency (AMCA). Through the third-party vendor, nearly 20 million records were breached over the course of eight months—an eternity.

    Thankfully, this is way longer than the average—not that the average is good. Healthcare organizations allow an average of 36 days to pass between initial security intrusions and detection, followed by an additional 10 days to contain it.

    This information spells trouble for organizations that don’t take third-party risk seriously. While we might never really know what precautions Quest Diagnostics and LabCorp had in place, it’s only natural to consider missteps each company may have made in defending its data. Keep reading for five common third-party risk mistakes, so you can avoid the same fate.

    1. Decentralized Information
    Firms that deal with vendor risk on a case-by-case basis with multiple systems, policies, and frameworks are muddling their third-party risk programs. While such firms might be addressing the majority of issues on a case-by-case basis, they’re not getting a comprehensive picture of risk. This is because risk is best managed with a consistent framework that’s monitored and analyzed from a single point of view. Not analyzing and managing risk from a place of consistency puts firms at risk of failing to capture the full lifecycle and range of third-party relationships, which may create inefficiencies, blind spots, and inconsistencies.

    2. No Common Standards
    Every industry is different, so it’s only fitting that third-party risk management practices vary significantly for each. This is in part due to organizational differences, but more broadly due to the absence of commonly observed best practices. For example, the composition of teams conducting due diligence and onboarding of vendors varies exponentially from firm to firm.

    3. Leaving Out Important Stakeholders
    Typically, the department involved at the beginning of a third-party relationship (often procurement) isn’t always who manages it moving forward. This creates the potential for gaps in oversight and communication as information is handed from one department to another. Including all relevant personnel from the get-go of a relationship ensures coverage and consistency.

    4. Erratic Assessments
    Continually assessing the value of a vendor often falls to the wayside on a manager’s long to-do list because of competing priorities and the uneventful nature of successful relationships. While most firms understand the importance of performing risk assessments at the outset of a relationship, prioritization and energy to continue evaluations at regular intervals can wane over time.

    5. Too Little Too Late 
    All companies eventually run into issues sourcing vendors. Though a division may have a spectacular idea, create a top-notch business case, and receive approval, they still might discover an issue with one or more vendors down the line. Entire projects can be derailed because third-party risk management was not considered at the genesis of a project.

    Third-party risk continues to be an area of vulnerability for every organization—but especially healthcare organizations that deal with the most sensitive of data. When other organizations get into hot water, it’s important to consider potential missteps and apply learnings to avoid the same fate for your organization.


    Jon Siegler is the co-founder and chief product officer at LogicGate. He has over a decade of experience in designing customer-centric enterprise risk and compliance systems, delivering value for organizations by reducing their risk, improving efficiency, and automating processes. Jon is driven by a passion to connect deeply with customers' problems to build an amazing product that makes the challenges of risk and compliance easier. 
    Related Searches
    • security
    • company
    • standards
    • diagnostics
    Related Knowledge Center
    • Software & IT
    • Diagnostics
    Suggested For You
    iCAD Signs Global Distribution Agreement With Sectra iCAD Signs Global Distribution Agreement With Sectra
    Cynerio Raises $30 Million in Series B Funding Cynerio Raises $30 Million in Series B Funding
    MDIC Partners With Booz Allen on Device Cybersecurity MDIC Partners With Booz Allen on Device Cybersecurity
    COVID-19 Sample Collection Kits Market to Reach $16.56B by 2028 COVID-19 Sample Collection Kits Market to Reach $16.56B by 2028
    How Can a Device End User Aid in Cybersecurity? How Can a Device End User Aid in Cybersecurity?
    What Could Medical Device Hacking’s Future Look Like? What Could Medical Device Hacking’s Future Look Like?
    Real-World Medical Device Hacking Tales Real-World Medical Device Hacking Tales
    Three Future Trends and Opportunities in Quality Assurance Three Future Trends and Opportunities in Quality Assurance
    Adopting a Data-Driven Quality Model Adopting a Data-Driven Quality Model
    How Digital Health Fits into the Medtech Mold How Digital Health Fits into the Medtech Mold
    Quality & Regulatory Solutions for the FDA Regulated Industries Quality & Regulatory Solutions for the FDA Regulated Industries
    Hackers and Home Healthcare Equipment Concerns Hackers and Home Healthcare Equipment Concerns
    Home Healthcare and Cybersecurity Home Healthcare and Cybersecurity
    5 Ways Manufacturers Can Improve IoMT Device Security 5 Ways Manufacturers Can Improve IoMT Device Security
    Investment Advisor Joins Ra Medical Investment Advisor Joins Ra Medical's Board

    Related Breaking News

    • Digital Health
      iCAD Signs Global Distribution Agreement With Sectra

      iCAD Signs Global Distribution Agreement With Sectra

      Agreement will expand access to ProFound AI and ProFound AI Risk to more facilities and imaging centers worldwide.
      Globe Newswire 08.19.21

    • Cynerio Raises $30 Million in Series B Funding

      Cynerio Raises $30 Million in Series B Funding

      Money will be used to secure mission-critical medical and IoT devices in hospitals and health systems.
      Cynerio 07.29.21

    • MDIC Partners With Booz Allen on Device Cybersecurity

      MDIC Partners With Booz Allen on Device Cybersecurity

      Companies will identify best practices in cybersecurity benchmarking that can be replicated by manufacturers to ensure patient safety and security.
      Business Wire 07.19.21


    • COVID-19 Sample Collection Kits Market to Reach $16.56B by 2028

      COVID-19 Sample Collection Kits Market to Reach $16.56B by 2028

      Most lucrative growth to occur in Asia Pacific region.
      Polaris Market Research 06.28.21

    • Digital Health
      How Can a Device End User Aid in Cybersecurity?

      How Can a Device End User Aid in Cybersecurity?

      MPO's Sean Fenske gets tips from Alan Grau of Sectigo about how a medical device end user, whether physician or patient, can help ensure the unit is secure.
      Sean Fenske, Editor-in-Chief

    Loading, Please Wait..

    Trending
    • Healthcare Changes Prompt Medtronic To Merge Sales Force Medtronic, Inc. Is Combining Its U.S. Ca
    • A New Approach To Post-Market Surveillance
    • Philips Names New Supervisory Board Chairman
    • FDA Clears LiveMetric's Wearable Blood Pressure Monitoring Tech
    • 5 Ways Plastics Revolutionized The Healthcare Industry
    Breaking News
    • FundamentalVR Launches All-In-One Software Development Kit
    • Meridian Medical Technologies Expanding Missouri Facility
    • Attune Medical, Heart Rhythm Clinical Research Solutions Evaluating ensoETM Device
    • Glooko, Hedia Teaming Up on Personalized Diabetes Care
    • Establishment Labs' Mia Femtech Debuts in Japan
    View Breaking News >
    CURRENT ISSUE

    May 2023

    • Computer Concepts for Medical Device Design
    • IVD Manufacturers Are Being Put to the Test
    • The New State of Medtech Outsourcing
    • View More >

    Cookies help us to provide you with an excellent service. By using our website, you declare yourself in agreement with our use of cookies.
    You can obtain detailed information about the use of cookies on our website by clicking on "More information”.

    • About Us
    • Privacy Policy
    • Terms And Conditions
    • Contact Us

    follow us

    Subscribe
    Nutraceuticals World

    Latest Breaking News From Nutraceuticals World

    Stefan Pasiakos, PhD, Selected to Lead NIH Office of Dietary Supplements
    Verdure Sciences Receives Award for Sustainable, Ethical Turmeric Sourcing
    BGG Receives Patent for Saw Palmetto ID Method
    Coatings World

    Latest Breaking News From Coatings World

    PPG Opens $30-Million Battery Pack Application Center in China
    Fact.MR: Steel Pipe Coatings Market To Hit $14.0 Billion By 2033
    Omya Extends Lightweight Fillers Portfolio with the Acquisition of Bublon
    Medical Product Outsourcing

    Latest Breaking News From Medical Product Outsourcing

    FundamentalVR Launches All-In-One Software Development Kit
    Meridian Medical Technologies Expanding Missouri Facility
    Attune Medical, Heart Rhythm Clinical Research Solutions Evaluating ensoETM Device
    Contract Pharma

    Latest Breaking News From Contract Pharma

    Element Creates New Lab Solutions Division
    Paraza Names Edward Marple Executive Vice President, Development
    Avacta Achieves Second Milestone in AffyXell Joint Venture
    Beauty Packaging

    Latest Breaking News From Beauty Packaging

    L'Oréal Leads Funding Round for Biotech Company, Debut
    Chamberlain Coffee and IGK Launch Matcha Dry Shampoo
    Weekly Recap: Beautycounter Searches for CEO, Le Domaine Expands Availability & More
    Happi

    Latest Breaking News From Happi

    Skylar’s ‘Boardwalk Delight’ Eau de Parfum Launches to Record Success at Sephora
    Register for the IBA Cocktail Reception in Las Vegas During Cosmoprof North America
    Amyris Announces Transformation Program
    Ink World

    Latest Breaking News From Ink World

    DuPont Artistri Inks Expands Pigment Inks Portfolio at ITMA 2023
    Toyochem Constructs New Pilot Facility for High-Performance Polymers
    UFlex Reports Unaudited 4Q, Full Year 2023 Results
    Label & Narrow Web

    Latest Breaking News From Label & Narrow Web

    Vetaphone demos ‘M’ corona treater at Mark Andy showroom
    Constantia Flexibles leads joint venture, Beontag rebrands and more
    Schreiner's Pharma-Comb IL Label supports clinical trial cancer medication
    Nonwovens Industry

    Latest Breaking News From Nonwovens Industry

    Maxcess International Opens New Facility in Mumbai
    emtec Showcases Groundbreaking Achievement in Haptic Measurement
    Hollingworth & Vose Joins United Nations Global Compact initiative
    Orthopedic Design & Technology

    Latest Breaking News From Orthopedic Design & Technology

    Former BD, J&J Executives Join Acuitive Technologies Board
    ODT's Most-Read Stories This Week—June 3
    Augmedics Debuts New Features, Indications for xvision Platform
    Printed Electronics Now

    Latest Breaking News From Printed Electronics Now

    Schreiner Group Receives Three FINAT Awards
    MClimate Releases Maintenance-Free CO2 Display
    Blackstone Completes Acquisition of Majority Stake of Copeland

    Copyright © 2023 Rodman Media. All rights reserved. Use of this constitutes acceptance of our privacy policy The material on this site may not be reproduced, distributed, transmitted, or otherwise used, except with the prior written permission of Rodman Media.

    AD BLOCKER DETECTED

    Our website is made possible by displaying online advertisements to our visitors.
    Please consider supporting us by disabling your ad blocker.


    FREE SUBSCRIPTION Already a subscriber? Login