Blog

The Importance of Sound Risk Management in the Wake of the SEC's Recent Charge Against SolarWinds

Let’s take a closer look at what you can expect throughout the SOC 2 process, including the length of examinations, how to tailor the examination to your requirements, and key questions to ask to select a qualified partner. Read More

Published On November 1, 2023

Demystifying the SOC 2 Process

Let’s take a closer look at what you can expect throughout the SOC 2 process, including the length of examinations, how to tailor the examination to your requirements, and key questions to ask to select a qualified partner. Read More

Published On October 30, 2023

NIST Drafts Major Update to Its Widely Used Cybersecurity Framework

In the first major update since its inception, the National Institute of Standards and Technology (NIST) will be launching the Cybersecurity Framework (CSF) 2.0 in January 2024.[1] Read the blog to learn more. Read More

Published On October 26, 2023

Artificial Intelligence Poses Cybersecurity Risks in Healthcare

Medical device security is top-of-mind for all healthcare organizations, and new FDA regulations address their complexity. Read the blog to learn more. Read More

Published On September 28, 2023

The Internet of Medical Things is here, and so are new FDA regulations. Here’s what you need to know.

Medical device security is top-of-mind for all healthcare organizations, and new FDA regulations address their complexity. Read the blog to learn more. Read More

Published On March 14, 2023

Why you should get hacked...on purpose

With the average cost of a healthcare data breach exceeding $10 million and 60% of healthcare breaches stemming from vendors, it’s no surprise there has been an uptick in contracting requirements around third-party assurances like HITRUST, SOC 2, and others. These assurances are often tied to contract execution, particularly for those third parties that are handling significant amounts of PHI. Read More

Published On February 21, 2023

5 Green Flags to Look for in Your Healthcare Cybersecurity Assessor

With the average cost of a healthcare data breach exceeding $10 million and 60% of healthcare breaches stemming from vendors, it’s no surprise there has been an uptick in contracting requirements around third-party assurances like HITRUST, SOC 2, and others. These assurances are often tied to contract execution, particularly for those third parties that are handling significant amounts of PHI. Read More

Published On January 30, 2023

HITRUST Redesigns CSF in v11 to Increase Efficiencies and Cyber Threat-Adaptive Assurances

HITRUST, the information risk management, standards, and certification body, has released HITRUST CSF version 11 to improve mitigations against evolving cyber threats, broaden the coverage of authoritative sources, and streamline the journey to higher levels of assurance. Meditology is an authorized HITRUST external assessor organization and we have a dedicated team of HITRUST experts available to discuss your specific certification needs. Read More

Published On January 13, 2023

The Importance of Sound Risk Management in the Wake of the SEC's Recent Charge Against SolarWinds

Demystifying the SOC 2 Process

NIST Drafts Major Update to Its Widely Used Cybersecurity Framework

Artificial Intelligence Poses Cybersecurity Risks in Healthcare

The Internet of Medical Things is here, and so are new FDA regulations. Here’s what you need to know.

Why you should get hacked...on purpose

5 Green Flags to Look for in Your Healthcare Cybersecurity Assessor

HITRUST Redesigns CSF in v11 to Increase Efficiencies and Cyber Threat-Adaptive Assurances

Featured Blog Posts

HIPAA Security Rule 2.0

The Future of HIPAA Regulations

Cloud Security Risk Assessments Instrumental in Transforming Healthcare Organizations’ Cloud Security Posture

Strengthening Medical Device Resiliency and Supply Chain Risk Preparedness in Clinical Settings

Find the right RITHM for you.