Case Study

Enhancing Rural Healthcare Cybersecurity and Risk Management at Faith Regional

Download PDFView Webinar

Challenges Before Censinet

Prior to adopting Censinet, Faith Regional faced several challenges in managing third-party risk:

  • Manual Processes: The organization relied on an internally developed vendor questionnaire that, while functional, was difficult to maintain and lacked efficiency.
  • Limited Visibility: Initial assessments were performed, but reassessments were not consistently executed, creating gaps in risk oversight.
  • Inefficient Tracking: Tracking vendor compliance and remediation required significant manual effort, often leading to delays and inconsistencies.
  • Challenges in Risk Prioritization: Determining which vendors posed the highest risk was difficult without a standardized framework for stratification and follow-up.

On Automating Vendor Compliance

“The ability to have vendors already in the catalog and automate follow-ups has been super important. We now have a system that enforces accountability and ensures vendor compliance before contracts are signed.”

Why Censinet?

Recognizing the need for a more scalable approach to third-party risk management, Faith Regional selected Censinet for its ability to drive:

  • Faster Risk Assessments: Censinet streamlines the risk assessment process, enabling vendors to respond efficiently and eliminating the need for redundant data entry.
  • Longitudinal Risk Visibility: The platform provides a clear, ongoing view of risk, ensuring vendor compliance and risk monitoring doesn’t stop after initial onboarding.
  • Improved Policy Enforcement: With Censinet, Faith Regional requires vendors to complete the risk assessment process before contracting, preventing workarounds and ensuring compliance.

On Benchmarking and Industry Collaboration

“We’re a rural healthcare provider, but that doesn’t mean we should be behind in cybersecurity. Benchmarking against industry standards helps us advocate for the right resources and ensure we are leading where it matters.”

About Faith Regional Health Services

Faith Regional Health Services, a rural healthcare provider in northeast Nebraska, has built a strong reputation for delivering high-quality patient care. Lead by Brian Sterud, Chief Information Officer and Chief Information Security Officer, the organization has continually evolved its cybersecurity and risk management approach to meet increasing regulatory demands and the growing complexities of managing third-party risk.

Chief Information Officer at Regional Health Services, Brian Sterud's headshot.
Brian Sterud MBA, CHCIO, FACHE, FHIMSS
Chief Information Officer
Regional Health Services

Censinet Impact

Automated Follow-Ups and Reminders

significantly reduce the administrative burden, allowing the security team to focus on strategic initiatives.

Improved Internal Accountability

provides real-time risk status updates, allowing internal stakeholders to track vendor progress and intervene if necessary.

Stronger Contract Negotiation

brings cyber risk into procurement discussions earlier, ensuring vendors meet critical security requirements upfront.

Enterprise Risk Management

enables Faith Regional to expand beyond third-party risk and manage broader organizational risks.
On Risk Awareness and Decision-Making
“One of the biggest takeaways has been clearly defining risk acceptance. In the past, stakeholders didn’t always realize that by not funding security initiatives, they were implicitly accepting risk. Censinet has helped us bring that conversation to the forefront.”
Brian Sterud MBA, CHCIO, FACHE, FHIMSS

About Faith Regional Health Services

Faith Regional Health Services, a rural healthcare provider in northeast Nebraska, has built a strong reputation for delivering high-quality patient care. Lead by Brian Sterud, Chief Information Officer and Chief Information Security Officer, the organization has continually evolved its cybersecurity and risk management approach to meet increasing regulatory demands and the growing complexities of managing third-party risk.

Chief Information Officer at Regional Health Services, Brian Sterud's headshot.
Brian Sterud MBA, CHCIO, FACHE, FHIMSS
Chief Information Officer
Regional Health Services

Ready to See
Censinet in Action?

Explore how healthcare organizations use Censinet to transform assessments into prioritized action and operational resilience.

Request a Demo
Company
Capabilities
    Resources
    Get In Touch
    Copyright 2026 Censinet, Inc. All rights reserved.
    Terms of Use    |    Privacy Policy    |    Security Statement