Telemetrix completes SOC 2 Type 2 assessment

ATLANTA--(BUSINESS WIRE)--Telemetrix today announced successful completion of a SOC 2 Type 2 assessment of their security controls. This achievement validates their commitment to the highest standards for security, confidentiality, and processing integrity.

Developed by the American Institute of Certified Public Accountants (AICPA), SOC 2 is an extensive auditing procedure that ensures a company is handling customer data securely and in a manner that protects the organization and the privacy of its customers. SOC 2 Type 1 assesses the design of security processes at a particular point in time, whereas Type 2 assesses how those controls work over extended periods of time.

Telemetrix uses Drata’s automation platform to continuously monitor 100+ security controls across the organization. Through Drata’s three-pronged approach to security, Telemetrix is able to continuously scan, monitor, test, and analyze their system for weaknesses. Automated alerts and evidence collection allows Telemetrix to confidently prove its security and compliance posture any day of the year, while fostering a security-first mindset and culture of compliance across the organization.

“Achieving SOC 2 Type 2 compliance is a major milestone for Telemetrix,” says Kyle Shillingstad, Telemetrix Chief Information Security Officer. “It demonstrates our commitment to protecting patient data, and to ensuring our security measures are consistently on the leading edge.”

David Guthrie, Telemetrix Board member and Strategic Technology Advisor commented, "Our team at Telemetrix is proud to have completed this extensive assessment of our end-to-end security controls. Keeping our patients’ personal information safe is of the utmost importance, and we will continue to look for additional ways to further optimize our security procedures.”

Telemetrix’s ongoing efforts to demonstrate their security and privacy controls will include seeking future SOC Type 2 assessments for system uptime and availability. They will also pursue a Health Insurance Portability and Accountability Act (HIPAA) audit, positioning them to work toward Health Information Trust Alliance (HITRUST) certification.

Telemetrix credits their partners with helping expedite the SOC 2 assessment, which was completed in four months. The overall compliance framework and monitoring was performed by Drata. Intruder performed penetration testing as well as ongoing threat detection. Microsoft Azure Sentinel and Defender for the Cloud offered additional alert detection, threat visibility, proactive hunting, and threat response at multiple levels.

The audit was completed by MJD Advisors of Waukee, Iowa.

About Telemetrix

Telemetrix is a uniquely positioned virtual health care enabler, able to support health systems in making meaningful improvements in patient access and care. Telemetrix position as the only provider in the remote patient monitoring industry with access to a full, real-time instance of the best-in-breed electronic medical records platform reduces the need for employee training and creates seamless, actionable provider alerts. It also means that Telemetrix offers features, services, and health data analytics no other remote patient monitoring provider can offer.

About Drata

Drata is the world's most advanced security and compliance automation platform with the mission to help businesses earn and keep the trust of their users, customers, partners, and prospects. With Drata, thousands of companies streamline over 10 compliance frameworks—such as SOC 2, ISO 27001, GDPR, and more—through continuous, automated control monitoring and evidence collection, resulting in a strong security posture, lower costs, and less time spent preparing for annual audits. The company is backed by ICONIQ Growth, Alkeon Capital, Salesforce Ventures, GGV Capital, Cowboy Ventures, Leaders Fund, Okta Ventures, SVCI, SV Angel, and many key industry leaders. For more information, visit drata.com.