top of page

Connie Mastovich

Information Assurance Analyst | WellSpan Health

Connie Mastovich, CISSP, CISA, has been involved in cybersecurity, in her own words “since before it had a name.” She has spent her entire career in some facet of the IT world, including the last 16 years focused on cybersecurity. She started out in healthcare IT and has returned to that arena with her current position as an Information Assurance Analyst at WellSpan Health. In the intervening years, she worked for a federal government contractor supporting a Top-Secret contract, covered the security aspects of medical devices for a global medical supply company, and served clients spanning all industries for a boutique Data Security company, addressing all facets of cybersecurity. In her spare time, she enjoys the outdoors, taking care of her pets and farm animals, and getting lost in a good book.

Third Party Risk Impact & Incident Response: Cover all your bases!

Day 3 | Track 2 | 3 - 3:50 PM

While the focus on vendors and the risks they bring to an organization has increased in recent years, one area not getting much attention is how those risks are addressed in an Incident Response (IR) Plan.

This presentation will provide actionable items that can be used to assure the Incident Response process at your workplace is appropriately managing areas such as:


  • Include third party risk (TPR) in your IR processes

  • Cyber insurance coverages and their role

  • When your vendor is breached

  • Appropriate tabletop exercises

  • IR process of the third party

bottom of page