Unmatched healthcare, technical and client service expertise

Client Testimonials

Read on to view testimonials from satisfied clients of Meditology Services. From community hospitals to academic medical centers, we work with clients across the country.

Baptist originally looked at several different companies to perform a security risk assessment. We chose Meditology mainly for their demonstrated knowledge and understanding of HIPAA, ARRA/HITECH and established security standards. They were unfailingly professional throughout the information gathering and data gathering processes, kept to their timeline and verified the results that they found. The reports produced were accurate and easy to understand, with appropriate benchmarking to other health care organizations and the security industry as a whole. Most importantly, they provided concrete and achievable suggestions to help mitigate the risks identified.

Barbara Anson
CISO, Baptist Memorial Health Care Corporation of Memphis, TN
Memphis, TN

Meditology was nothing but professional from start to finish for the project with McLaren. We outsource our IT services and they worked closely with us, and the vendor, to collect required documentation, they accepted input from both sides and explained their conclusions once findings were verified. The team's project time lines, status reports, and weekly follow up calls kept us all on track for a timely completion. Meditology addressed the significant risk areas in a straightforward manner without making respondents feel defensive, and they freely offered information about industry best practice. The team has definitely won the confidence of our Executive group and expect we will be asking Meditology for more work in the future.

Denise Dach
Corporate Director of Compliance, McLaren Health Care

I knew of Meditology Services by reputation but had not worked with them previously. It was vitally important that I had a complete sense of confidence in Meditology’s ability to successfully deliver this project without impacting clinical care. As I learned more about Meditology’s deep technical skills and multiple prior experiences working in healthcare environments similar in size and complexity to Grady, my sense of confidence in Meditology grew. The project was delivered on-time and on-budget, and exceeded my expectations based on the thoroughness and care of the approach, and the quality of the reporting. Meditology was able to achieve each of the engagement objectives, and their report provided a comprehensive picture of Grady’s security posture. I plan to work with Meditology in the future and look forward to similar success.



Michael Francis
Executive Director, Infrastructure Services & ISSO, Grady Health System

“As a covered entity, the WellStar Health System must continuously assess its information security risk as part of its continuous improvement program. Meditology provided WellStar with an independent risk assessment in support of our HIPAA compliance and meaningful use requirements, as well as our intrinsic desire to protect our patient’s confidential information. Every healthcare entity realizes they have become a target for those who would do harm to our patients and our practices. Meditology provided WellStar with a partner who kept our patient’s and WellStar’s best interests at the forefront of the engagement.”

Mark Reardon
AVP and CISO, Wellstar Health System

Dartmouth-Hitchcock has partnered with Meditology Services since 2012.  Over that period of time, they have helped with multiple projects, both large and small, repeatedly delivering as promised.  We have come to trust their insights regarding regulatory issues and their vast experience of the healthcare industry when developing security policies, strategies and budgets.  We regularly use their ethical hacking skills to test the effectiveness of our security program.   In summary, they have earned our trust and become an integral part of our security toolset.

Peter Merrill
Director of Information Systems, Dartmouth-Hitchcock Medical Center

At Salem Health we consider Meditology Services a trusted partner. We have partnered with Meditology to fill multiple specialized positions and have been very satisfied. Meditology’s leaders have personal experience in the daily work we perform in health care. Because of this, they understand the needs we have and are able to provide the correct resources at the right time. There are many firms to choose when looking for consultants. However, my experience has shown that Meditology Services is a preferred consulting firm. As our partner assisting us on many of our top priority projects, it is clear that their goal is to provide an exceptional experience to their customers.

Jason Stark, MPA, HA
Project Management Office Manager, Salem Health

We engaged Meditology to assist us with Security Risk Assessment services on two different occasions. They were highly knowledgeable and extremely professional throughout the duration of each project, and the quality of the final deliverables they provided was exceptional. Meditology’s healthcare focus and core competency of Information Security and Privacy were indispensable to the engagement. Their deep knowledge of the HIPAA and HITECH regulations, as well as the Common Security Framework and supplemented by industry operational experience of their team members, added huge value to the assessment. Meditology was able to address significant risk areas in a straightforward manner and was able to provide practical examples and insight on how to go about correcting issues. We will definitely call upon Meditology again when the need arises.

Martin Littmann
Chief Technology Officer & CISO, Kelsey-Seybold Clinic

We were looking for a partner to assist us in taking our risk management program to a new level. We chose Meditology because of their track record in healthcare and reputation in the region. Meditology's security operational experience, coupled with their knowledge of HIPAA, Meaningful Use, HITRUST, PCI and other security requirements was invaluable to help us map out our path forward. The project was professionally managed from start to finish and Meditology was able to effectively communicate with senior leadership to help us advance our program. We continue to look to Meditology to provide additional insight and assistance for security and privacy matters for our organization.

Interim CISO
Interim CISO, Large Mid-Atlantic Health System

My original experience with Meditology was during a risk assessment at a different healthcare organization. I was impressed with Meditology's team, the professional manner in which they interacted with our stakeholders, and the comprehensiveness of the final deliverable. Upon joining Avanti, I saw the need for a similar, thorough review of our security controls and I immediately thought of Meditology for the job. Meditology's professionals completed the risk assessment with the same professionalism and quality as my first experience. Again, the team met my high expectations throughout the engagement and even went above and beyond the original contracted scope to assist with some last minute requests that provided additional value to me and the organization. I anticipate Meditology will continue to be a trusted adviser for my future security needs.

Jason Cervantes
Chief Information Officer, Avanti Hospitals, LLC

As a health information exchange (HIE), we are a highly customer-focused organization –– and we recognize this same orientation in a consulting partner. Meditology came to us recommended by our members and well-respected in its service community. They were readily able to evaluate our policy and security framework, and identify areas of key focus. We particularly appreciated their knowledge around HIPAA and our statewide HIE. With their help, we created an entire array of organizational policies. Meditology also conducted a security assessment that demonstrated we had appropriate safeguards in place for robust exchange. This has helped assure our member hospital/health systems, healthcare insurers, and ambulatory practices. Naturally, the effort has had an important influence on our service procedures. We look forward to continued work with Meditology for our consulting and ongoing risk-assessment needs.

Daniel Wilt
Senior Director of Information Technology and Chief Information Security Officer, HealthShare Exchange of Southeastern Pennsylvania

One of NASCO's key controls for security management is the annual revalidation of security access to the primary claims processing system, to ensure appropriateness of access based on role. NASCO engaged Meditology to perform the security revalidation based on our prior, positive experience working with the firm's leadership and we are pleased we did. Although the project had tight constraints, Meditology exceeded our expectations with high-quality deliverables completed on-time and on-budget. Meditology also provided valuable guidance and suggestions for making the annual security access revalidation process more cost-effective and efficient.

Lauret Howard, SMP
Vice President, Strategy, Brand and Risk Management, NASCO

Onsite Health Diagnostics has relied on Meditology Services for HIPAA security risk assessment and penetration testing since 2014. Meditology’s information security services have provided OHD’s customers and business partners with confidence in the seriousness with which we take the our responsibility to protecting their highly sensitive data. We have been more than pleased with Meditology’s professionalism, diligence and responsiveness, and we look forward to working with them for years to come. Since our founding, OHD has been dedicated to exceptional client service, providing stress-free employee health screenings and workforce health data analytics. Our clients, who include Fortune 500 corporations, hospital systems, financial institutions, state & local governments and small businesses alike, rely on OHD’s commitment to privacy and security when it comes to their employee health data.

Kyle Alexander
CEO, Onsite Health Diagnostics