Secure Exchange Solutions (SES), a leading provider of cloud-based clinical data exchange and AI-powered technologies, today announced the company received HITRUST and NIST Cybersecurity Framework certifications for information security and management of cybersecurity risk for the following business offerings: the SES Health Information Service Provider, Certificate Authority, Registration Authority, analysis tool, and automated notifications platform. These endorsements affirm SES commitment to achieving the highest standard in secure clinical data exchange.
Today, more than ever, data security is vital to protecting provider patient confidentiality. The HITRUST CSF Certified status proves that the organization’s development, security, and compliance protocols meet key regulations and industry-defined requirements to ensure compliance for data security and appropriate risk management. The certification encompasses federal and state regulations, standards, and frameworks helping organizations manage compliance across a broad range of regulatory requirements, while protecting sensitive patient data and reducing complexity, risk, and cost. Achieving the HITRUST CSF places Secure Exchange Solutions in a global elite group of healthcare technology providers.
The NIST Cybersecurity Framework certifies that SES meets the standards, guidelines, and best practices for managing cybersecurity risk across the entire SES enterprise and all product platforms. Given that network security is a primary concern of healthcare organizations, the NIST certification reinforces SES as a leading provider of secure data exchange.
“Protecting customers’ sensitive information is the foundational principle of our technology platform,” said Boris Shur, CTO, and ISSO, Secure Exchange Solutions. “Our information security framework has a comprehensive set of policies, procedures, and processes implemented in the services infrastructure to support our customers’ requirements.”
Founded in 2007, the HITRUST CSF provides SES with a roadmap to data security and compliance. Designed as a risk-based approach to organizational security, as opposed to a compliance-based approach, the HITRUST CSF certification combines aspects from common security frameworks like ISO, NIST, PCI, and HIPAA. This blend of security and compliance mandates provides an integrated approach that ensures all programs are aligned, maintained, and comprehensively support SES information risk management and compliance objectives.
“HITRUST is the industry gold standard and achieving both the HITRUST CSF Certification and the NIST Cybersecurity Framework Certification mark key milestones for our organization,” said Michele Darnell, Chief Commercial Officer, Secure Exchange Solutions. “These certifications demonstrate our security commitment to our customers and technology partners and assures them that we are delivering under the highest industry standards for protecting sensitive data and information,” Darnell added.