This project presents a study protocol for an identity-centered, risk-adaptive access control framework designed to reduce third-party vendor cybersecurity risk in U.S. healthcare system. The work introduces a layered Vendor Identity and Access Management Platform (VIMP) and a Continuous Identity Risk Model (CIRisk) to support dynamic authorization and lifecycle governance. The protocol is aligned with HIPAA, NIST zero trust and cybersecurity supply chain risk management guidance. This public record is shared to support open dissemination, scholarly visibility, and future prototype evaluation.
Catherine Jasper Nduasinde (Thu,) studied this question.
Synapse has enriched 5 closely related papers on similar clinical questions. Consider them for comparative context: