When it comes to cyber, going it alone is a tall order for health systems. As such, many have turned to outside help in an effort to keep the bad guys at bay. A recent report from KLAS, “Security & Privacy Consulting/Managed Services 2024” – co-authored by Ciera Black Walker and Jaren Day – delves into this trend and examines the strengths of different service providers.
According to the report, “Organizations continue to turn to security and privacy firms for both consulting and managed services to maintain compliance with patient data regulations, identify threats, and improve ongoing security.”
High Performers in Security Consulting
KLAS’s evaluation identified several standout firms delivering exceptional consulting services. tw-Security, the 2024 Best in KLAS winner for security and privacy consulting services, received widespread praise for its ability to tailor technical insights to non-technical stakeholders. Serving primarily clinics and small hospitals, the firm is recognized for its long-term strategic partnerships. The report notes, “Two-thirds of small-hospital and clinic respondents see the firm as a long-term strategic partner rather than a source of one-time assessments.”
Another top performer, Meditology Services, works extensively with large and midsize hospitals. Clients highlighted the firm’s objective insights and cost-effective solutions. One respondent shared, “Meditology Services offers highly beneficial services at an approachable cost.”
Innovation and Broad Offerings
Firms like Fortified Health Security and Clearwater stand out, according to the report, for their broad range of services. Fortified Health Security was commended for its proactive approach and its Central Command platform, which integrates live dashboards and engagement data. Clearwater, the report stated, excels in regulatory compliance and offers a risk management tool, IRM|Analysis, to help organizations identify internal vulnerabilities.
Clients value these innovations, according to the report. A respondent praised Clearwater’s professionalism and collaboration, stating, “Clearwater is especially proficient with regulatory compliance guidance and provides a high level of collaboration.”
The Expanding Role of Managed Services
The report also highlights a shift toward managed services as healthcare organizations look to enhance their cybersecurity posture. A significant 67% of respondents indicated plans to expand their use of managed services, with key areas of interest including security operations center (SOC) monitoring, third-party risk management, and incident response.
Healthcare-specific expertise remains a top priority for clients when selecting managed services providers. The report emphasizes, “Interviewed organizations using security and privacy managed services highly appreciate the healthcare-specific security expertise they receive, as expertise is key to proactively responding to ongoing security threats.”
A Call to Action for Health Systems
For IT and cybersecurity professionals in health systems, the report offers a clear message: proactive engagement with specialized security and privacy firms is essential in navigating today’s complex threat environment. It concludes, “Regardless of the firm being used, the healthcare-specific security expertise they provide is key to proactively responding to ongoing security threats.”
Share Your Thoughts
You must be logged in to post a comment.