
CLOUD SECURITY RISK ASSESSMENTS
Comprehensive review of the people, processes, and technology required to secure cloud implementations
We specialize in the following major cloud platforms:
- Microsoft Azure
- Amazon AWS
- Google GCP
- Microsoft Office 365
- Healthcare-specific Vendor Cloud Implementations (e.g. Salesforce, EHRs, CASB)
- SaaS Application and Platform assessments (e.g. CI/CD pipeline, API Gateways, Containers (Docker), Container Orchestration Solutions (Kubernetes)
Assessments are driven by:
- Our real-world experience with healthcare deployments
- Regulatory requirements
- Cloud service provider guidance
- Industry standards (e.g. HITRUST, NIST, Cloud Security Alliance)
- We offer three assessment types to align with your specific scale and budget expectations.
We offer three assessment types to align with your specific scale and budget expectations:
-
- Standard - Includes an assessment of all the popular IaaS, PaaS, and SaaS CSP specific services for security best practices.
- Plus - includes the services offered in the Standard assessment model plus a comprehensive security assessment of backend CI/CD deployment and all CSP specific services within the organizational cloud accounts. These assessments are tailored to the specific Cloud Service Providers (CSPs) in use in your environment. This level of assessment also includes an overall assessment of your cloud security program including an inventory of cloud deployments across the enterprise, roles and responsibilities for cloud security, and progress and remediation to a defined strategy over time.
- Advanced - includes the Standard and Plus assessment services along with assessments of third-party vendor deployments leveraging cloud platforms.

WHAT SETS MEDITOLOGY APART
- Top-ranked provider of information risk management, cybersecurity, privacy, and compliance services for healthcare
- Proven track record helping healthcare entities to evaluate, design, configure, and certify cloud-hosted applications
- Experts in healthcare cloud pen testing, strategy, risk management, and compliance
- Experience with all major cloud service providers in healthcare settings
- Real-world experience applying cloud standards and healthcare regulations
- Alignment with HIPAA, HITRUST CSF, NIST CsF, Cloud Security Alliance (CSA)