Meditology Assurance SOC 2 reports demonstrate your compliance with the AICPA’s Trust Service Criteria for security, availability, processing integrity, confidentiality, and privacy.

Meditology’s SOC 2 readiness assessment and SOC 2 examination process can help your organization achieve compliance by:

  • Providing guidance on the AICPA SOC 2 requirements prior to the SOC 2 examination.
  • Reviewing the policies and procedures relevant to SOC 2 examinations.
  • Identifying gaps within your organization’s control environment by assessing the design and operating effectiveness of technical, physical, and procedural controls.
  • Assisting with the remediation of control gaps by ensuring existing controls are designed optimally, documented appropriately, and operating effectively.
  • Facilitating the exchange of control documentation and testing evidence during the execution of the SOC 2 examination.

SOC 2 Type 2 audit reports have become one of the most common and cost-effective vehicles for demonstrating controls relevant to security, availability, confidentiality, processing integrity and privacy to your customers and partners. Certifications and attestations like SOC 2 are fast becoming table stakes to provide products and services to healthcare entities.


Meditology Services is a certified HITRUST assessor and an experienced assessor for SOC 2 examinations. Our healthcare security experts frequently advise healthcare executives on best practices for pursuing HITRUST certifications as well as going through SOC 2 examinations.

Many organizations opt to obtain both HITRUST CSF Certification and SOC 2 reports simultaneously. Obtaining both certifications as part of one security initiative provides a cost-effective means of demonstrating effective security and privacy practices.

HITRUST demonstrates compliance with regulatory requirements that apply to healthcare organizations and provides a high-level of assurance to healthcare organizations.

While SOC 2 reports can be obtained by a wide range of industries, many of the security controls demonstrate compliance with HIPAA, which is an additional bonus for healthcare organizations and the businesses serving them.

Duotone (38)


  • Ranked #1 Best in KLAS for Cybersecurity Advisory Services in 2019 and 2020
  • HIPAA expert witness firm for OCR
  • Experienced CISOs and Privacy Officers
  • Dedicated to healthcare
  • Hundreds of clients coast to coast
  • Advisors to ONC / HHS