Immediate Vault Immediate Access

Twist and Shout: Avoiding Workplace Injuries with Risktech

This week’s inaugural RIMS Risktech Forum highlighted many of the ways technology is changing how risk professionals approach their work, and the advantages of embracing new innovations. During the “What Can Risktech Do for Me?” panel, Mike Poulos of Marsh LLC, Jen Thorson of data analytics firm Modjoul, and Susan Shemanski, vice president of risk management for Adecco Employment Services discussed one of the practical applications of risktech—wearable workplace technology—to prevent injuries and unsafe behavior, protect workers, and mitigate liability for employers. In the course of normal business for many companies, employees in physically demanding jobs can twist, reach and otherwise strain their bodies in different ways that can lead to both immediate and long-term injuries.

buy prelone online cosmeticdermcenter.com/wp-content/uploads/2023/10/jpg/prelone.html no prescription pharmacy

New technology offers a way to mitigate these risks.

After an overview of the general field of wearable risktech devices and their benefits, the panel discussed a real case of how a company implemented a program using belts that would track and collect data on employees’ movements, including twisting and reaching. The result, they said, was discovering multiple literal pain points for their employees and their company, and it may change how risk managers can root out and address risks like healthcare and insurance costs, employee health, morale and attrition, and even equipment costs.

For example, the panelists noted, one employee experienced pain when reaching bins on a bottom shelf as part of her work and even repurposed one of the bins as a stool for more comfort.

Another, whose job consisted of labeling packages, had to stretch to reach the label printer, aggravating their back in the process.

buy avodart online cosmeticdermcenter.com/wp-content/uploads/2023/10/jpg/avodart.html no prescription pharmacy

The belts provided data showing these strains, and the company adjusted the employees’ work spaces to alleviate them. After gathering and analyzing the data from the belts, the company hired an ergonomist and conducted employee training to reduce unsafe conduct, even using the data to produce a new training video for incoming employees.

The panelists stressed communication as an essential part of the adoption process, and noted the importance of addressing employee concerns—including whether the belts would collect blood alcohol level or heart rate (no to both)—before implementing the program.

buy biaxin online cosmeticdermcenter.com/wp-content/uploads/2023/10/jpg/biaxin.html no prescription pharmacy

To preempt privacy concerns and protect employees’ personal information, the company also anonymized the data the belts produced.

The benefits for companies from using this type of risktech are tangible and significant. Making work less dangerous for employees in physical jobs and reducing accidents and injuries can mean happier and healthier workers. This, in turn, can also positively affect productivity and attrition. Additionally, preventing workplace injuries can reduce healthcare costs, and companies can even sometimes use the data from wearable risktech devices to secure lower rates from their insurers.

As the panelists noted, in a tight hiring market, businesses may have to hire less experienced workers for physically demanding jobs, and monitoring physical movements can also help identify which employees may be doing dangerous things and need additional training. For example, ensuring that a relatively inexperienced forklift operator is not performing unsafe physical movements can prevent potentially catastrophic accidents that hurt the employee, the equipment, the company’s bottom line, and even its reputation.

Similarly, other panels at the forum showed how risk managers can use technology to address the risks their companies face, including utilizing artificial intelligence and machine learning, blockchain technology, and other innovative ways to harness data. For more information on how insurers and risk managers are using blockchain to change how they approach risk, check out the recent Risk Management articles “Can Blockchain Improve Insurance?” and “Strengthening the Links: How Blockchain Can Help Manage Supply Chain Risk.”

Insulin Pumps Recalled After Hacking Vulnerability Revealed

After the U.S. Food and Drug Administration (FDA) expressed concern this week that some of its internet-connected insulin pumps are vulnerable to hacking and could not be patched, medical device manufacturer Medtronic Plc has announced that they would offer an exchange for the 4,000 patients who are reportedly using the vulnerable devices. If patients are using vulnerable out-of-warranty models, Medtronic is offering a newer replacement at a discounted price, and in-warranty models will be replaced free of charge.

The Medtronic insulin pumps in question work by regularly providing insulin to the patient with the help of a continuous glucose monitor (CGM), which uses Bluetooth to connect to a computer via a CareLink USB device. This system allows patients to remotely send the device commands and share data with their health care providers. These devices are part of an industry-wide push to connect medical devices to the internet (as part of the wider internet of things, or IoT) to allow more efficient and cost-effective communication between patients and providers.

While the exact nature of the insulin pump vulnerability is unclear at this time—neither the FDA nor Medtronic has disclosed any technical details—the danger from someone exploiting the vulnerability is very serious and could be potentially fatal. According to the FDA, “an unauthorized person (someone other than a patient, patient caregiver, or health care provider) could potentially connect wirelessly to a nearby MiniMed insulin pump with cybersecurity vulnerabilities. This person could change the pump’s settings to either over-deliver insulin to a patient, leading to low blood sugar (hypoglycemia), or stop insulin delivery, leading to high blood sugar and diabetic ketoacidosis.” In a letter to patients using one of the vulnerable pumps, Medtronic confirmed the potential danger, saying that “An unauthorized person with special technical skills and equipment could potentially connect wirelessly to a nearby insulin pump to change settings and control insulin delivery.”

Fortunately, there have not been any reported cases of anyone exploiting the vulnerability, but it is not the case of such an issue affecting these devices. In 2011, a security researcher was able to hijack nearby Medtronic insulin pumps, giving him the ability to deliver potentially fatal doses of insulin to patients within 300 feet. After the vulnerability was revealed, Medtronic released a statement saying that it was working to improve their devices’ security.

This March, it was also revealed that Medtronic’s connected pacemakers, clinic programmers and home monitors were also vulnerable to hacking. In that case, Dutch security researchers discovered the security flaws, which the company reportedly initially denied before the FDA began an investigation. The agency later issued a warning about the pacemakers, and Medtronic released a patch for the software. As with the insulin pumps, there were no reported cases of anyone taking advantage of the security flaw before the fix was implemented.

Speaking to CBS News after the March incident, the FDA’s Dr. Suzanne Schwartz said, “Any device can be hacked and that’s often not understood,” adding that companies are not prepared for this reality and that “we still have a ways to go.” This week, the FDA released a set of recommendations regarding the latest insulin pump vulnerability, including a suggestion to patients: “Talk to your health care provider about a prescription to switch to a model with more cybersecurity protection.”

Such cases highlight the continuing potential risks of internet-connected medical devices. As discussed in the recent Risk Management article “Diagnosis: Risk—The Product Liability Challenges of Diagnostic Health Tech,” cyber vulnerability is only one of the many challenges for manufacturers and users of connected medical devices. These devices—especially ones that provide medical diagnostic data—have scores of built-in product liabilities that could land their manufacturers (as well as any number of other companies in the devices’ chain of distribution) in legal trouble if something goes awry.

Infographic: 16 Blockchain Disruptions

Underpinning the heart of digital currencies, blockchain has graduated from being merely a buzzword to revolutionizing how companies conduct business. Services and products that are powered by blockchain pose financial and operational risks that can challenge traditional models. With new cryptocurrencies popping up regularly and law firms creating practice groups around it, blockchain is bound to impact your industry.

If you need a quick primer on the topic ahead of the many blockchain education sessions at the RIMS 2019 annual conference, the folks at Bitfortune have created the voluminous infographic below to help you understand how the technology will improve 16 different industries, from music to government.

Explore how blockchain goes beyond Bitcoin and real-world applications that affect you and your organization. Discover ways that blockchain increases transparency and could potentially benefit your organization’s overall resilience.

Visit Bitfortune.net for more information.

Disruptive Technologies Present Opportunities for Risk Managers, Study Finds

PHILADELPHIA–Disruptive technologies are used more and more by businesses, but those organizations appear to be unprepared. What’s more, companies seem to lack understanding of the technologies and many are not conducting risk assessments, according to the 14th annual Excellence in Risk Management report, released at the RIMS conference here.

The study found an apparent lack of awareness among risk professionals of their company’s use of existing and emerging technologies, including the Internet of Things (IoT), telematics, sensors, smart buildings, and robotics and their associated risks. When presented with 13 common disruptive technologies, 24% of respondents said their organizations are not currently using or planning to use any of them. This is surprising, as other studies have found that more than 90% of companies are either using or evaluating IoT technology or wearable technologies and that companies in the United States invested $230 billion on IoT in 2016.

Another finding was that despite the impact disruptive technology can have on an organization’s business strategy, model, and risk profile, 60% of respondents said they do not conduct risk assessments around disruptive technologies.

“Today’s disruptive technologies will soon be — and in many cases already are — the norm for doing business,” said Brian Elowe, Marsh’s U.S. client executive leader and co-author of the report said in a statement. “Such lack of understanding and attention being paid to the risks is alarming. Organizations cannot fully realize the rewards of using today’s innovative technology if the risks are not fully understood and managed.” According to the study:

Organizations generally, and risk management professionals in particular, need to adopt a more proactive approach to educate themselves about disruptive technologies — what is already in use, what is on the horizon, and what are the risks and rewards. Forward-leaning executives are able to properly identify, assess, and diagnose disruptive technology risks and their impact on business models and strategies.

This lack of clarity presents opportunity for risk professionals. In fact, previous Excellence reports have indicated that C-suite executives and boards of directors want to know what risks loom ahead for their organizations and increasingly rely on risk professionals to provide that insight.

“As organizations adapt to innovative technologies, risk professionals have the opportunity to lead the way in developing risk management capabilities and bringing insights to bear on business strategy decisions,” said Carol Fox, vice president of strategic initiatives for RIMS and co-author of the report. “As a first step, risk professionals are advised to proactively educate themselves about disruptive technologies, including what is already in use at their organizations, what technologies may be on the horizon, and the respective risks and rewards of using such technology.”

One thing companies can do to manage risks associated with disruptive technologies is facilitate discussions through cross-functional committees—yet fewer companies, only 48%, said they have one, a drop from 52% last year and 62% five years ago.

Whether discussed in weekly, monthly, or quarterly organization-wide committee meetings, emerging risks — including disruptive technologies — need to be examined regularly to anticipate and manage the acceleration of business model changes. When risk is siloed, too often the tendency can be toward an insurance-focused approach to risk transfer rather than an enterprise approach that may lead to pursuing untapped opportunities.

The Excellence survey, Ready or Not, Disruption is Here, is based on more than 700 responses to an online survey and a series of focus groups with leading risk executives in January and February 2017.

Findings from the survey were released today at the RIMS 2017 Annual Conference & Exhibition. Copies of the survey are available on www.marsh.com<http://www.marsh.com> and www.rims.org<http://www.rims.org>.