SOC 2 Attestations

Meditology Assurance SOC 2 attestation reports demonstrate your compliance with
security, availability, processing integrity, confidentiality, and privacy controls.

Meditology can help your organization achieve SOC 2 attestation by:

  • Providing formal attestation of SOC 2 requirements.
  • Assisting with the creation, design, and documentation of technical, physical, and procedural controls within your organization’s environment.
  • Identifying gaps within your environment’s control descriptions and associated processes.
  • Performing tests of Trust Services controls in advance of formal SOC 2 audits.
  • Assisting with the remediation of control gaps by ensuring existing controls are designed optimally, documented appropriately, and operating effectively.
  • Facilitating the exchange of control documentation and testing evidence during the execution of external SOC 2 audits.
  • SOC 2 Type 2 audit reports have become one of the most common and cost-effective vehicles for demonstrating your security controls to customers and partners. Certifications and attestations like SOC 2 are fast becoming table stakes to provide products and services to healthcare entities.

Meditology Services is a certified HITRUST assessor and an experienced assessor for SOC 2 attestations. Our healthcare security experts frequently advise healthcare executives on best practices for pursuing HITRUST certifications as well as SOC 2 attestation projects.

Many organizations opt to obtain both HITRUST CSF Certification and SOC 2 Attestation simultaneously. Obtaining both certifications as part of one security initiative provides a cost-effective means of demonstrating effective security and privacy practices.

HITRUST demonstrates compliance with regulatory requirements that apply to healthcare organizations and provides a high-level of assurance to healthcare organizations.

While SOC 2 certifications can be obtained by a wide range of industries, many of the security controls demonstrate compliance with HIPAA, which is an additional bonus for healthcare organizations and the businesses serving them.

Duotone (38)


  • Ranked #1 Best in KLAS for Cybersecurity Advisory Services in 2019 and 2020
  • HIPAA expert witness firm for OCR
  • Experienced CISOs and Privacy Officers
  • Dedicated to healthcare
  • Hundreds of clients coast to coast
  • Advisors to ONC / HHS