Intermountain Healthcare expands GRC program


Intermountain Healthcare, the largest healthcare provider in the Intermountain West, is to expand its governance, risk and compliance (GRC) program enterprise-wide with the Rsam platform.

Rsam, a provider of GRC solutions, will support Intermountain Healthcare's integrated risk and security management with a solution encompassing audit, risk and compliance assessment, incident management, policy management, risk register, security risk intelligence, and vendor risk management.

Intermountain Healthcare initially selected Rsam in the third quarter of 2013 to automate vendor risk management.

Following this, Intermountain Healthcare embarked on rolling out enterprise policy management, PCI exception requests, and a risk register to catalogue and prioritize risks and controls across the enterprise. In addition, Intermountain automated access control review to centralize document review and manage user access, role authorizations, and other compliance violations.

"At Rsam, we are highly focused on helping organizations achieve time to value. We believe that for GRC solutions to be truly valuable they should be implemented quickly, used intuitively to drive results and be flexible enough to meet our customers' evolving requirements," said Neil Hooper, senior vice president of sales at Rsam. "Intermountain Healthcare's rapid deployment and process excellence is a blueprint for how we strive to work with all our customers."

Intermountain Healthcare plans to expand Rsam to automate their internal risk and compliance processes which will retire up to 20 internal tools, saving the organization both money and resources.

"Intermountain recognized the critical need to implement a GRC solution in order to improve the maturity level of our security efforts," said Karl West, chief information security officer at Intermountain Healthcare.

"In our search for a GRC product, we looked for a solution that could work in a large integrated healthcare and deliver immediate benefits to Intermountain. Rsam has a broad suite of services, functionality, and expertise that allowed us to deliver quickly against a large list of GRC Security processes and needs. Our successes to date have allowed us to plan for the future with Rsam as a true collaborator."

Intermountain Healthcare, Rsam, US