Tell us about you

Work Email required

Organization required

First Name required

Last Name required

Job Title required

Phone required (###) ###-####, or int ######...

City required

State/Province required

Tell us about your organization

error messages will go here...

Looks like we’re already familiar with you!

Please press next to continue with the survey.

Looks like we’re already familiar with you!

According to your account type you are not eligible to take surveys at this time. If this is a mistake, please contact KLAS.

If you are trying to access KLAS research data and reports, an email has been sent to   with a link to login.

If the email doesn't appear in your inbox, ask your IT department to add KLASresearch.com to your company spam filter's "whitelist", and check your email's spam folder.

Membership Commitment

In exchange for giving their feedback, healthcare providers can create an account to get access to industry reports, user commentary, and real-time ratings.

By submitting your account request, you are engaged in patient care as either an employee (or contractor) of your provider organization and that you confirm that you have reviewed and agree to abide by the Terms of Use for this website as updated periodically.

To learn more about how we process and protect your personal data, you may view our Privacy policy.

By submitting your account request, you confirm that you have reviewed and agree to abide by the Terms of Use for this website as updated periodically. To learn more about how we process and protect your personal data, you may view our Privacy policy.

By submitting your account request, you confirm that you have reviewed and agree to abide by the Terms of Use for this website as updated periodically.

To learn more about how we process and protect your personal data, you may view our Privacy policy.

 

To learn more about how we process and protect your personal data, you may view our Privacy policy.

 

To learn more about how we process and protect your personal data, you may view our Privacy policy.

Thank You! Your information was submitted successfully!

Next Steps - An email has been sent to . Please follow its instructions to verify your email, and login.

If the email doesn't appear in your inbox, try asking your IT department to add KLASresearch.com to your company spam filter's "whitelist", and checking your email's spam folder.

Thank You! Your information was submitted successfully!

Next Steps - A KLAS representative will contact you to discuss working with KLAS, typically within 24 to 48 hours.

If you have any further questions please contact info@klasresearch.com or 1-801-226-5120.

Surprise! Looks like we already have an account for you.

An email has been sent to blah@blah.com with a link to login.

If the email doesn't appear in your inbox, try asking your IT department to add KLASresearch.com to your company spam filter's "whitelist", and checking your email's spam folder.

Premium Reports
Subject Expert

Contact KLAS

info@klasresearch.com

801.226.5120

KLAS - Contact KLAS
 Download Report Brief  Download Full Report    Zoom in charts

Preferences

   Bookmark

Related Series

Security & Privacy Consulting Services 2021
|
2021
Medical Device Security 2018
|
2018
Cybersecurity Services 2018
|
2018
Cybersecurity 2017
|
2017
Health Data Security
|
2015
Data Security, Battle Readiness
|
2015
Security and Privacy Protection 2014
|
2014

Related Blogs

 End chart zoom
Security Advisory Services 2016
* A page refresh may be necessary to see the updated image

Security Advisory Services 2016
Which Firms Are Helping Providers Sleep at Night?

Authored by: Mike Smith and Lois Krotz October 11, 2016 | Read Time: 3  minutes

Current Time Inside Cache Tag Helper: 7/24/2021 1:40:28 PM and Model.reportId = 1110

Healthcare is one of the industries most targeted by cybercriminals—and attacks can disrupt patient care and damage a health system’s brand, reputation, and financial health. To address this growing threat, providers are shifting focus from HIPAA compliance—the area in which the majority of 2014 security advisory work was done—to developing and enhancing security programs to prevent, detect, respond to, and recover from attacks; in this research, 54% of firms' validated engagements included some aspect of security-program work. To help providers searching for a security firm, this report explores several selection factors: impact on security preparedness, type and scope of work offered, and which firms small, midsize, and large organizations typically use.

Healthcare Providers,
Want to see more reports?

Not a Provider, contact us for pricing details.

HtmlReportContent Current Time Inside Cache Tag Helper: 7/24/2021 1:40:28 PM and Model.reportId= 1110 and Model.HtmlReportContent_LastWriteTimeUtcInTicks=637406509014260826
type of work performed

1. CynergisTek Sets Bar for Highest Performance and Highest Impact

In a high-performing market, CynergisTek clients report the highest overall satisfaction. CynergisTek has the most clients who say the firm's work had a significant impact on security preparedness, and many have signed multiyear partnership agreements due to the level of trust and strategic expertise they experience. Strong relationships and executive leadership set CynergisTek apart, as do their healthcare-specific focus, experience setting up security frameworks, and strong action plans. There have been some misses when it comes to effectively communicating their message to customers. CynergisTek has the most validated engagements for security/risk assessment, security-program assessment/development, and HIPAA assessment/program development in this report; many clients report using the firm in all three areas.

what impact did your firm have on your security


2. Security-Program Work Experiences Most Growth: PwC and CynergisTek Lead the Way

In 2014, KLAS validated only a few engagements that involved developing and enhancing security programs; this year, over half of validated engagements included some aspect of this type of work. PwC and CynergisTek have by far the most validated engagements. Clients say PwC understands security frameworks, develops and implements strong strategies, has deep security knowledge and expertise, and provides good communication.

CynergisTek clients say the firm is comparatively inexpensive, consultants have deep knowledge, methodology is flexible to meet clients' needs, and executives are deeply involved. Deloitte is also used often for security-program work and excels at creating urgency and visibility around security issues.


3. PwC and Deloitte Are the Most Common Choices for Large Health Systems

Over three-quarters of the PwC and Deloitte engagements in this research were with health systems over 1,000 beds, which often have more mature, complex security operations. Both firms leverage worldwide, cross-industry security operations for best practices and communicate effectively with hospital executives and boards to ensure buy-in for security initiatives and programs. Thanks to this deep communication, over two-thirds of PwC clients indicate that the firm's work has had a significant impact on their organization's overall sense of security.

Multiple clients feel that the firm is not involved enough in project execution and that consultants should be more engaged in day-to-day work. Deloitte's engagements tend to be larger and can be very progressive. Both firms have capable security experts; however, Deloitte clients have experienced some challenges due to turnover and gaps in specific healthcare knowledge.

validated project scope and service type



4. Clearwater Compliance and Dell Specialize In Small And Midsized Hospitals

Clearwater Compliance and Dell Services have the highest percentage of work with community and midsized hospitals, respectively; such hospitals tend to focus on security assessment and compliance work. Clients say Clearwater’s niche focus on HIPAA assessment, strategy, and software allows consultants to gain deep knowledge and provide consistent methodology. Clearwater clients do report a lower impact, saying the firm is more focused on providing tools and templates than strategic guidance. Dell Services provides one of the largest managed security services in the industry.

Clients praise their tools’ ability to detect and analyze threats. Due to a lack of strategic guidance, only half say Dell had a significant impact on security preparedness; they view Dell as a tactical partner that doesn’t lead out on strategy. CynergisTek also has a large presence in this space, and providers report high satisfaction with engagements. Though feedback is limited, another vendor who serves this type of client, ClearDATA, has the lowest overall performance of all measured firms, mainly due to tool-customization challenges and a lack of client understanding.

 Download Report Brief  Download Full Report

This material is copyrighted. Any organization gaining unauthorized access to this report will be liable to compensate KLAS for the full retail price. Please see the KLAS DATA USE POLICY for information regarding use of this report. © 2021 KLAS Research, LLC. All Rights Reserved. NOTE: Performance scores may change significantly when including newly interviewed provider organizations, especially when added to a smaller sample size like in emerging markets with a small number of live clients. The findings presented are not meant to be conclusive data for an entire client base.