Meditology’s knowledge base of research demonstrates our understanding of complex challenges faced by organizations around the country.

Thought Leadership

Offering fresh perspective from the front lines of Healthcare IT, Meditology Services thought leadership draws on trends and expert ideas to create industry standards. With more than 20 years of dedicated healthcare IT, Meditology is pleased to offer insightful tools, expert advice and valuable information for healthcare providers and IT professionals. Click below to access the latest trends, recent articles, case studies and expert commentary from one of the industry’s top thought leaders, all in one location.


August 3rd, 2018
The HITRUST Common Security Framework (CSF) Assurance Program is the most widely adopted framework and set of tools in the healthcare industry for evaluating an organization’s information risks and/or compliance state.
June 22nd, 2018
Are any of your information security or privacy projects in jeopardy due to resources constraints? Staffing shortages are a major bottleneck due to high-demand limited supply of experienced professionals.
June 21st, 2018
Presented on Thursday, June 21st, 2018 by Brian Selfridge, Meditology IT Risk Management Partner and Kevin Henry, IT Risk Management Senior Associate
June 19th, 2018
In our latest blog post, Meditology Services IT Risk Management Consultant Maliha Charania analyzes some common misconceptions women may have about cybersecurity jobs. She also presents strategies cybersecurity professionals can follow to encourage women to opt for cybersecurity as their career.
June 6th, 2018
Traditional audit response requires security questionnaires to be funneled through already over-burdened corporate Information Security teams. What is the MARRS Advantage?
May 31st, 2018
Presented on Thursday, May 31st, 2018 by Brian Selfridge, Meditology IT Risk Management Partner
May 10th, 2018
Presented on Thursday, May 10th, 2018 by Brian Selfridge, Meditology IT Risk Management Partner
April 11th, 2018
Healthcare organizations continue to face dangers from cyberspace. These dangers include evolving new threats to patient information and the critical systems that support delivery of health care services.
April 2nd, 2018
The 2018 HIPAA Summit provided a tremendous opportunity to learn how your security management peers address vendor security risk assessments.
February 5th, 2018
Written by Meditology's IT Risk Management leader Nadia Fahim-Koster, Managing Director
January 23rd, 2018
This January 2018 paper provides an update to our initial Microsoft Office 365 Security for Healthcare Organizations paper originally released in 2017. The latest leading practices for securely deploying Office 365 security features in healthcare settings are detailed in this document.
December 14th, 2017
Presented by Cliff Baker, Meditology services and Adam Greene, Davis Wright Tremaine LLP
November 14th, 2017
Presented by Nadia Fahim-Koster and Kevin Henry
November 9th, 2017
Written by Bethany Page, Manager, IT Risk Management
October 11th, 2017
Webinar presentation replay Presenters: Tyrone Jeffress, ITRM Director and Brian Selfridge, ITRM Partner
October 10th, 2017
This whitepaper discusses key strategies for recruiting, addressing immediate shortage needs and long-term branding and cross-department efforts to keep your staff growing into the future.
October 2nd, 2017
By Maliha Charania, IT Risk Management
September 25th, 2017
By Caitlin Robertson, IT Risk Management
September 20th, 2017
Meditology IT Risk Management Partner, Brian Selfridge recently presented alongside Paul Kerr at the Healthcare Security Forum, a conference sponsored by HIMSS Boston Regional Chapter.
September 18th, 2017
By Tyrone Jeffress, ITRM Director
August 31st, 2017
This report explores the business drivers for healthcare security certifications and focuses on one of the most common and achievable certifications, the SOC 2 certification created by the American Institute of Certified Public Accountants (AICPA).
August 29th, 2017
Bethany Page, ITRM Manager and CISO presented a timely presentation on SOC 2 and other Healthcare Security Certifications
July 20th, 2017
Ryan Freeman Jones, Senior Manager and Kevin Henry, Senior Associate presented a timely webinar on Security Due Diligence for Healthcare Mergers and Acquisitions
July 17th, 2017
by Maliha Charania, ITRM Intern
June 27th, 2017
This whitepaper details ransomware trends and their impact on the healthcare industry, updates on recent ransomware attacks significantly impacting healthcare organizations, and recommendations for preventing and responding to ransomware incidents.
June 20th, 2017
Meditology's IT Risk Management Director, Tyrone Jeffress recently presented at the 2017 Annual HITRUST Conference in Grapevine, TX.
June 19th, 2017
Meditology's IT Risk Management leader Nadia Fahim-Koster, Managing Director recently presented at the 2017 Annual HITRUST Conference in Grapevine, TX along with Martin Ignatovski Chief Compliance Officer with Eye Care Leaders.
June 15th, 2017
Meditology's IT Risk Management Partner Brian Selfridge, recently presented at the 2017 Annual HITRUST Conference in Grapevine, TX along with Anahi Santiago, CISO of Christiana Care
June 6th, 2017
Webinar and Presentation Presented by IT Risk Management Partner, Brian Selfridge on cybersecurity trends to look out for in 2017 and beyond
May 29th, 2017
by Nadia Fahim-Koster, Director, IT Risk Management
May 2nd, 2017
By Qasim Ijaz
April 18th, 2017
Recommended steps to follow when performing security and compliance due diligence for mergers and acquired entities in healthcare
March 1st, 2017
Timely report outlining the risks and impacts associated with medical device security, which also provides leading practices for developing medical device security programs.
February 14th, 2017
Information security and privacy have evolved into mission critical business functions for healthcare organizations heading into 2017. The healthcare industry is presented with a perfect cyber storm resulting from the proliferation of health information across platforms and third parties, an increased utility of patient information on the black market, shortages in cyber security skill sets, vulnerable medical devices, and targeted threats including ransomware.
February 7th, 2017
The evolution and advances in healthcare information technology are driving innovative technical solutions to improve organizational efficiency, population health, and patient outcomes across the continuum of care. Healthcare organizations ranging from providers, payers, and Business Associates have looked in recent years to take advantage of cloud-hosted platforms like Microsoft's Office 365 solution to drive efficiencies and boost productivity admidst growing resource and budget constraints.
December 7th, 2016
Meditology Partner, Brian Selfridge's featured article on the HITRUST Blog