At Veradigm, we are extremely vigilant when it comes to protecting the confidentiality, integrity and availability of the sensitive information with which we have been entrusted.
To protect the security of corporate, employee, client and other confidential information; ensure that it is available for use; build confidence in the integrity of information; foster a culture that values security through promoting security awareness and providing guidance on security expectations and goals. Veradigm takes a risk-based approach to security, regularly re-evaluating the latest risks in the ever-changing security landscape. For more information on the Veradigm Security Program, please reference the following resources:
Veradigm maintains a robust compliance environment based on leading industry standards. To validate our security controls and foster continuous improvement, Veradigm engages in certification, accreditation and independent reviews for our products and service offerings. These activities include, but are not limited to, SOC 2, Type 2 reports, EHNAC accreditation, EPCS certifications and ISO 9001:2015 reviews.
Certified Veradigm products contain security features to meet applicable requirements under the ONC Certification Rule. These include authentication and access control, as well as authorization, auditing and encryption features. Security requirements outlined in the ONC Certification Rule are a base, and many Veradigm products have features that go beyond these requirements. Furthermore, Veradigm employs a secure development lifecycle incorporating risk-based threat modeling, automated code reviews and security testing.
Veradigm security teams maintain tools and processes for ensuring the security of data hosted by Veradigm. The tools include firewalls, intrusion detection/prevention systems, proactive vulnerability scanning, backup and disaster recovery procedures, as well as physical security controls. The Veradigm Security Operations Center (SOC) monitors Veradigm networks, systems and databases around the clock for security events.
For more information on the security controls for a product, please visit the individual product pages on Veradigm.com or contact your Veradigm Client Representative. If you have any questions, please contact the Veradigm Security Team at:
Veradigm LLC
305 Church at North Hills St
Raleigh, NC 27609
Attention: Chief Security Officer
Or
PandSCompliance (at) veradigm (dot) com