Epiphany Healthcare announces that it has become the only vendor in the niche market of ECG management software with a cyber-security certification. Epiphany is officially ISO 27001 certified for all of its products and locations. To be ISO 27001 compliant means Epiphany meets the security standards from the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC).
The goal of being ISO 27001 compliant is for companies to provide IT security management standards that ensure the protection of data. Risk management is a key component of ISO 27001, which holds companies accountable for their strengths and weaknesses.
Considering risk assessment and treatment options, Epiphany chose to establish a low-risk tolerance, which was the most demanding standard. Epiphany implemented all recommended controls in ISO 27001, including those for Epiphany Cloud Services, creating a total of more than 121 controls. Epiphany then applied these controls to all aspects of its business and products.
“This certification reinforces our commitment to protect our customers’ vital information and data,” says Epiphany Healthcare’s Product Manager of New Ventures, Eddie Hernandez.
Becoming ISO 27001 certified brings information security under management control with clear guidelines being met. Some of the guidelines established to increase IT security are for responding to security events, employee onboarding/off boarding, mobile device management, office security, secure software development, ransomware and malware strategies, and more.
The investment in this certification, including man-hours, staff training, and registrar expenses exceeded $300,000. Over 1,000 pages of documentation were either modified or created to meet the certification requirements. The outcome was a new IT management system ensuring that Epiphany Healthcare focuses on protecting the confidentiality and integrity of its data.
Epiphany Healthcare has focused on becoming ISO 27001 compliant to reduce the risks associated with increasing security threats. By applying standards and best practices of information security, Epiphany has strengthened its processes to enable better safeguards. Being ISO 27001 compliant enables Epiphany Healthcare to be better prepared in preventing any potential security incidents.
For more information, visit www.epiphanyhealthdata.com.
© 2020, TechNation Magazine. Site designed by MD Publishing, Inc.