Report and ongoing efforts illustrate Telemetrix commitment to cybersecurity and user privacy
Telemetrix today announced successful completion of a SOC 2 Type 2 assessment of their security controls. This achievement validates their commitment to the highest standards for security, confidentiality, and processing integrity.
Developed by the American Institute of Certified Public Accountants (AICPA), SOC 2 is an extensive auditing procedure that ensures a company is handling customer data securely and in a manner that protects the organization and the privacy of its customers. SOC 2 Type 1 assesses the design of security processes at a particular point in time, whereas Type 2 assesses how those controls work over extended periods of time.
Telemetrix uses Drata’s automation platform to continuously monitor 100+ security controls across the organization. Through Drata’s three-pronged approach to security, Telemetrix is able to continuously scan, monitor, test, and analyze their system for weaknesses. Automated alerts and evidence collection allows Telemetrix to confidently prove its security and compliance posture any day of the year, while fostering a security-first mindset and culture of compliance across the organization.
Read More: SalesTechStar Interview with Ang McManamon, VP of Sales at Crunchbase
“Achieving SOC 2 Type 2 compliance is a major milestone for Telemetrix,” says Kyle Shillingstad, Telemetrix Chief Information Security Officer. “It demonstrates our commitment to protecting patient data, and to ensuring our security measures are consistently on the leading edge.”
David Guthrie, Telemetrix Board member and Strategic Technology Advisor commented, “Our team at Telemetrix is proud to have completed this extensive assessment of our end-to-end security controls. Keeping our patients’ personal information safe is of the utmost importance, and we will continue to look for additional ways to further optimize our security procedures.”
Telemetrix’s ongoing efforts to demonstrate their security and privacy controls will include seeking future SOC Type 2 assessments for system uptime and availability. They will also pursue a Health Insurance Portability and Accountability Act (HIPAA) audit, positioning them to work toward Health Information Trust Alliance (HITRUST) certification.
Read More: The QTC Opportunity: How Increasing QTC Complexity Can Make or Break Sales Effectiveness
Telemetrix credits their partners with helping expedite the SOC 2 assessment, which was completed in four months. The overall compliance framework and monitoring was performed by Drata. Intruder performed penetration testing as well as ongoing threat detection. Microsoft Azure Sentinel and Defender for the Cloud offered additional alert detection, threat visibility, proactive hunting, and threat response at multiple levels.