Ineffective security, compliance and assurance methods drive cost and confusion within organizations and across third parties. The Provider Third-Party Risk Management Council seeks to develop, recommend and promote a series of practices to effectively manage information security-related risks throughout the supply chain and to safeguard patient safety and information.