HSCC releases guide on third-party AI risk, supply chain transparency

Apr 15, 2026 - 04:06 PM
Packages on assembly line

The Health Sector Coordinating Council’s Cybersecurity Working Group has released a guide on third-party artificial intelligence risk and AI supply chain transparency. The guide includes best practices on AI-driven supply chains for health care, including data lineage tracking, model auditability, embedded third-party dependencies and post-deployment monitoring. The best practices are intended to align with frameworks such as the National Institute of Standards and Technology AI Risk Management Framework. The guide also addresses growing gaps in discovery and disclosure processes that make it challenging to manage AI supply chain risk. 

“This guide offers practical, step-by-step guidance for health care organizations to identify existing and evolving instances of AI within their technology supply chains,” said John Riggi, AHA national advisor for cybersecurity and risk. “It offers effective strategies to mitigate related cyber and privacy risks, from procurement to deployment. This is especially important as insecure third-party technology, service providers and the supply chain continue to be the primary sources of cyber risk exposure and data breaches in health care.”

For more information on this or other cyber and risk issues, contact Riggi at jriggi@aha.org. For the latest cyber and risk resources and threat intelligence, visit aha.org/cybersecurity.

Related News Articles

Headline
AI in health care: Experts discuss the future of AI practices and policies
Jim VandeHei, CEO of Axios; Marc Boom, M.D., AHA board chair and president and CEO of Houston Methodist; Anne Klibanski, M.D., president and CEO of Mass…
Headline
CMS Administrator Oz and Deputy Administrator Brillman discuss agency’s focus on innovation, reducing waste
Centers for Medicare & Medicaid Services Administrator Mehmet Oz, M.D., and CMS Deputy Administrator and Director of Medicaid and CHIP Dan Brillman sat…
Perspective
Tapping Into AI’s Potential for Supporting Great Patient Care
Public
Every day, we see more headlines and examples highlighting the impact of artificial intelligence on our lives. As with many transformational technologies,…
Headline
Administration announces additional pharmaceutical tariffs
The White House April 2 issued a proclamation implementing additional tariffs on certain patented pharmaceutical products and ingredients. The order imposes a…
Headline
HHS reverses 2024 reorganization of IT services
The Department of Health and Human Services March 31 announced that it is reverting a 2024 reorganization of health IT leadership and services. The dually…
Headline
AHA makes recommendations to CMS on strengthening domestic supply chain for PPE, essential medicines
The AHA today submitted comments to the Centers for Medicare & Medicaid Services on an advanced notice of proposed rulemaking on potential options to…