Demo Request
X Close Search

How can we assist?

Case Study

Emory Healthcare’s Journey to a More Streamlined and Scalable Third-Party Risk Management (TPRM) Program

Download PDF

Before Censinet

Before implementing Censinet, Emory Healthcare faced significant challenges managing third-party risk with assessment completion times exceeding 60 days or more. Key challenges included:

  • Manual Processes: Reliance on spreadsheets and manual intervention drove significant inefficiencies and data management issues.
  • No Standardization: Questionnaires weren’t standardized, making it difficult to analyze risk in a consistent manner across so many vendors and products.
  • “One Size Didn’t Fit All”: Questions had to be manually adjusted for all the different types of third party software and services, and the different risks introduced by each type.
  • No Reassessments: Initial assessments were so time consuming, there was little time or resources left for reassessments.

On Assessments

“We have done more assessments in a shorter amount of time with existing staff, and have much more time to do the actual analysis, identify risk, and really work with the vendor on remediation.”

Decision Process

Emory Healthcare sought a more efficient, standardized, and scalable solution for third-party risk management (TPRM). Key criteria for the new solution included:

  • Ease of Use: The solution needed to be automated, user-friendly, easy to implement, and integrate seamlessly into existing TPRM workflows.
  • Centralized: A single location for all vendor documentation to improve data management, accessibility, and faster analysis.
  • “Crowdsourced”: Wanted to quickly access completed vendor questionnaires to expedite the assessment process.

Why Censinet?

Emory selected Censinet RiskOps™ to manage third-party risk based on several key capabilities that help accelerate the assessment process and scale the TPRM program, including:

  • Crowdsourcing” Capabilities: Censinet’s network model and 1-Click Assessments™ enables Emory to quickly access completed questionnaires, creating more time for robust risk analysis, rather than time spent waiting on the vendor.
  • Standardization: Censinet’s standardized questionnaires and automated corrective action plans (CAPs) enables a faster, more consistent approach to evaluating, scoring, and remediating risk for each vendor and product.
  • Continuous Curation: Censinet’s continuous curation of questionnaires and CAPs eliminates the need to manually account for the myriad types of third party software and services (and their specific risks) that require assessment.

Censinet Impact

Check mark icon

Increased Assessment Speed

Censinet RiskOps has significantly reduced the time required to complete third-party risk assessments, allowing Emory to do more total assessments – and reassessments – with no additional resources required.
Check mark icon

Accelerated Risk Reduction

With increased speed, Emory not only completes more risk assessments, but can do more thorough risk analysis for each assessment, driving down overall risk across the third-party portfolio
Check mark icon

Improved Workflow Visibility

Censinet RiskOps Dashboard capabilities provide better portfolio risk insights as well as full transparency into TPRM assessment status and progress, facilitating improved communication and management.
Check mark icon

Peer Benchmarking

Using Censinet Cybersecurity Benchmarks for NIST CSF, Emory can measure their overall cyber maturity compared to precise peer groups, and more effectively prioritize investment to improve cyber preparedness, maturity, and resiliency.
Check mark icon

Check mark icon

About Emory Healthcare

As part of Emory University, Emory Healthcare is the most comprehensive academic health system in Georgia, dedicated to innovating medicine, teaching the caregivers of the future, and supporting the healthcare needs of our patients. We are made up of 11 hospitals, the Emory Clinic, and more than 490 provider locations.

professional headshot of Jigar Kadakia, VP & CISO at Emory Healthcare
Jigar Kadakia
VP & CISO
Emory Healthcare

About Emory Healthcare

As part of Emory University, Emory Healthcare is the most comprehensive academic health system in Georgia, dedicated to innovating medicine, teaching the caregivers of the future, and supporting the healthcare needs of our patients. We are made up of 11 hospitals, the Emory Clinic, and more than 490 provider locations.

professional headshot of Jigar Kadakia, VP & CISO at Emory Healthcare
Jigar Kadakia
VP & CISO
Emory Healthcare

About Emory Healthcare

As part of Emory University, Emory Healthcare is the most comprehensive academic health system in Georgia, dedicated to innovating medicine, teaching the caregivers of the future, and supporting the healthcare needs of our patients. We are made up of 11 hospitals, the Emory Clinic, and more than 490 provider locations.

professional headshot of Jigar Kadakia, VP & CISO at Emory Healthcare
Jigar Kadakia
VP & CISO
Emory Healthcare
On the benefits of the Censinet network model

Contact Us Today!

Emory Healthcare’s adoption of Censinet RiskOps™ transformed its third-party risk management program, moving it from manual, inefficient processes to a streamlined, standardized, and scalable approach. For more information on Emory Healthcare’s journey and how Censinet can help transform your cyber risk management, please contact info@censinet.com.

Contact CensinetContact Censinet
Collage featuring a woman working on a laptop computer, and a doctor reviewing a screen filled with patient data

Sign-up for the Censinet Newsletter!

Hear from the Censinet team on industry news, events, content, and 
engage with our thought leaders every month.

Terms of Use | Privacy Policy | Security Statement | Crafted on the Narrow Land