Report and ongoing efforts illustrate Telemetrix commitment to security
Telemetrix announced successful completion of an SOC 2 Type 1 assessment of their security controls, validating their commitment to the highest standards for security, confidentiality, and processing integrity.
Read More: PathFactory Content Intelligence For Revenue Enablement
“Receiving SOC 2 Type 1 is a major milestone for Telemetrix. It demonstrates our controls and auditing procedures are in place to maintain the security and confidentiality programs required for critical healthcare IT systems.”
Developed by the American Institute of Certified Public Accountants (AICPA), SOC 2 is an extensive auditing procedure that ensures a company is handling customer data securely and in a manner that protects the organization and the privacy of its customers. SOC 2 Type 1 assesses the design of security processes at a point in time, where Type 2 assesses how those controls work over time.
Telemetrix further indicated they are actively monitoring their systems using Drata’s automated platform as they work towards their Type 2 assessment, in particular the completion of uptime and availability controls.
“The privacy of personal health information is paramount,” says Kyle Shillingstad, Telemetrix Chief Information Security Officer. “This milestone is just the beginning of how we illustrate our commitment to its protection.”
SOC 2 both documents and helps ensure Telemetrix compliance to the Health Insurance Portability and Accountability Act (HIPAA) Security Rule, which governs the protections of electronic personal health information (ePHI).
Read More: SalesTechStar Interview with Rich Hoyland, Head of Sales at Anyscale
David Guthrie, Telemetrix Board member and Strategic Technology Advisor, commented, “Receiving SOC 2 Type 1 is a major milestone for Telemetrix. It demonstrates our controls and auditing procedures are in place to maintain the security and confidentiality programs required for critical healthcare IT systems.”
Telemetrix credits their partners with helping expedite this assessment, which was completed in two months. The overall compliance framework and monitoring was performed by Drata. Intruder performed penetration testing. Microsoft Azure Sentinel and Defender for the Cloud offered alert detection, threat visibility, proactive hunting, and threat response at multiple levels. The audit was completed by MJD Advisors of Waukee, Iowa.