Meditology Services is a leading provider of information risk management, cybersecurity, privacy, and regulatory compliance consulting services exclusively for healthcare organizations, including providers, payors, and business associates. The firm is recognized as a top-ranked firm for Cybersecurity Advisory Services by KLAS Research.
Their core offering is delivered through a blend of expert consulting and technology-enabled services, notably the RITHM™ (Risk Management for Information Technology in Healthcare) program. RITHM™ is a subscription-based, turnkey IT risk management program designed to help healthcare entities achieve and maintain core security and compliance requirements with a predictable, multi-year approach.
Key Services & Capabilities:
- Risk & Compliance: Annual HIPAA Risk Assessments (supported by CyberROM™ dashboards), HITRUST® Certification/Assurance, SOC 2 Examinations, PCI-DSS compliance.
- Cybersecurity Testing: Ethical Hacking, Network Penetration Testing, Cloud Security Controls Assessment, Web Application Security Testing, and Medical Device & IoT Security.
- Managed Services: Virtual CISO (vCISO) & Staff Augmentation, Managed Assessment Risk & Response Service (MARRS) for security questionnaire responses, and CORL Vendor Security Risk Assessments.
- Advisory: Incident Response Planning (IRP) tabletop exercises, Annual board presentation support, and advisory services to organizations like the Office for Civil Rights (OCR) and HHS.
Meditology's approach is highly technical and strategic, aiming to minimize rework and provide concrete, achievable suggestions for risk mitigation. They serve a wide range of clients, from small medical practices to large, complex national healthcare providers.
