The analysis is based on assessments of nearly 3,000 risks in 2018 for more than 250 hospitals, health systems, physician practices and other healthcare entities. To determine top risk areas, Crowe examined how often a risk was included in assessments by healthcare entities. Researchers said they also considered each risk’s effect on the healthcare entity and how likely the risk will negatively affect patient care, regulatory compliance and other critical goals.
Rather than ranking the risks, Crowe put them under five categories, although top risks may be relevant to multiple categories. The top risks based on likelihood of occurrence and their effect on organizations are:
Compliance
- 340B Drug Pricing Program
- HIPAA
- Nonphysician contracts
- Physician contracts and compensation
- Pharmacy
IT
- Business continuity and disaster recovery
- IT governance
- Cybersecurity
- Systems access management
- Systems implementation
Operations
- Case management
- Financial performance
- Health information management
- Joint ventures
- Physician practices
- Third-party vendor management
Patient care
- Quality and safety
- Telehealth and telemedicine
Revenue cycle
- Billing and collections
- Charge capture
- Coding
- Denials management
- Patient access
More articles on leadership and management:
4 ways leaders can overcome their fear of failure
Public health will frame gun debate for House Democrats next year
NewYork-Presbyterian CIO Daniel Barchi on the strategic initiative he’ll tackle in 2019