Search
Contact Us
Contact Us

Is it Drummond Certified™?

Prove Your Solution is Secure, Interoperable, and Compliant—with Expert Support Every Step of the Way.

Health IT Compliance & Security

Testing, certification, and security services for the health IT and healthcare industry.
Explore Services

Data Security & Compliance

Compliance audits and support for PCI, ISO, FTC, NYDFS, and more.
Explore Services

Supply Chain & B2B Compliance

Testing and certification for supply chain and B2B interoperability and security.
Explore Services

Experience You Can Count On

Legislative and market pressure like changing rules and consumer demands are hard to keep up with. We help guide you through testing and certification processes and shore up your strained internal resources so you can efficiently accelerate your solution development timelines.

ONC certifications gold icon.
ONC Certifications
0 +

ONC Health IT certifications are unique, intricate, and very comprehensive and should not be confused with other IT or security certification programs.

More health IT developers trust Drummond for their critical ONC Health IT certification than all other ACBs combined.

HIPAA compliant.
HIPAA Assessments
0 +

Drummond has extensive and deep health IT industry knowledge. And we understand the importance of protecting patient health information.

EPCS certifications gold icon.
EPCS Certifications
0 +

The DEA Electronic Prescribing of Controlled Substances (EPCS) compliance rules are changing soon. 

Drummond is an Approved Auditor. Our team is ready to help you maintain compliance and prepare for the future.

PCI assessments gold icon.
PCI Assessments
0 +

Drummond is one of the longest-running PCI Quality Security Assessors (QSA) in the industry. 

Our team of senior-level PCI reporting and attestation professionals can help ensure you meet all 300+ PCI security control requirements.

Resources

  • Insights & Guidance

EPCS Market Survey

  • Blog

Increased FHIR Adoption Requires a New Testing Strategy

  • Events & Video

New State Regulations Mandate ONC Certification: How to Know If Your Software Is Affected

  • Blog

ONC Certification is Not HIPAA Compliance: Why You Need Both

  • Blog

How NIST Frameworks Build Regulatory Readiness and Resilience

  • Blog

Why Poor AI Governance Is a Bottom-Line Risk for Healthcare

  • News & Announcements

Pawscripts Becomes First Veterinary Prescribing Software to Earn Drummond Certification for EPCS

  • Updates

Temporary Enforcement Pause on Most Insights Requirements

  • News & Announcements

Beijing Sinowintop Becomes First China-Based Company to Achieve Drummond AS2 Certification

  • Insights & Guidance

Penetration Testing Estimator

FREE CONSULTATION

Schedule your free consultation with a Drummond expert, get answers to your most pressing compliance, standards, or security questions. And we will follow up with your own custom Action Plan.
Schedule Your Consultation

Trusted Experts in Compliance, Security, and Standards Assessments

For over 25 years, Drummond has been a trusted partner, helping organizations like yours meet industry standards, achieve regulatory compliance, and strengthen their cybersecurity defenses. Our history of delivering reliable certification and validation services has made us a recognized leader across multiple industries.

Our team of dedicated experts offers impartial, third-party assessments, tailored advisory services, and cybersecurity threat identification to ensure your business remains secure, competitive, and fully compliant with evolving requirements. 

Go to Drummond they make ONC Health IT certification simple with their comprehensive and easy to use script-base process.
Derena Solutions Logo
Wayne SingerSr. Vice President, Business Development
Drummond has shown the professional curiosity and flexibility that a pioneering audit firm requires to apply their long-standing expertise in a new context. We look forward to working with Drummond on future OCI audits.
Spherity-Logo
Christiane WirrigCustomer Success Manager
Drummond Group has and continues to be a valued partner in ensuring a high level of confidence in the GDSN network. Their AS2 Certification expertise and overall reputation in the industry bring benefits in this and many areas that continue to strengthen GDSN network integrity.
GS1 Logo
Susie McIntosh-HinsonSr. Director Operations and Conformance
“As a longtime client of Drummond, we have found a proven partner for compliance around the DEA EPCS regulatory requirements. Drummond has shared their expertise and proven methodologies to ensure we maintain compliance as required.“
Gary Barton
Gary BartonChief Software Officer, Bravado Health
Drummond provided exceptional support and service from the Drummond team, including weekly touchpoints and comprehensive documentation. This support and guidance was one of the reasons Office Practicum was able to successfully achieve baseline certification in the Ambulatory Clinical Setting.
Office Practicum (OP) Logo
Kraig BrownCEO
The team at Drummond Group always performs at the highest level of professionalism and thoroughness. This makes us better and ensures our solution offerings exceed expectations.
Legisym Logo
David KesslerPresident
“Drummond has served us well for our ONC and EPCS/ DEA certifications and provided important guidance to us over the past two years. Drummond’s team of experts and their certification processes gave us confidence in knowing that we are compliant with regulatory mandates and in supporting our practices in enhancing patient care.“
Amy Hansen
Amy HansenProduct Manager, IntrinsiQ Specialty Solutions
The true value in Drummond certification is the people of Drummond. I fully trust their abilities to help our products get certified.
Fire.ly logo
Rich AlmeidaVice President, Product Strategy & Compliance
“Even as priorities shifted in response to a global pandemic, AWWA knew we could not be distracted from our commitment to the security of our customers’ data. Drummond was flexible in giving us just the help we needed to renew our PCI compliance.”
Mike Hiskey
Mike HiskeyDirector of Information Technology, AWWA
Utilizing Drummond’s highly intuitive EPCIS Interoperability Conformance Checker, a web-based portal tool, was key to gaining the GS1 Trustmarks with speed and efficiency.
Sovereign Pharmaceuticals Logo
Paul HafeyPresident
Trust isn’t something that can be granted in the digital age, but has to be earned. Drummond’s independent expert assessment of our systems and controls has proven invaluable.
LedgerDomain Logo
Alex ColganHead of Marketing & Partnerships
Thank you for all your efforts to thoroughly examine our Solutions against the conformance criteria.
Legisym Logo
Brittany PaysonDirector of Product Management
“As a longtime client of Drummond, we have found a proven partner for compliance around the DEA EPCS regulatory requirements. Drummond has shared their expertise and proven methodologies to ensure we maintain compliance as required.“
Gary BartonChief Software Officer, Bravado Health
Gary Barton
“Drummond has served us well for our ONC and EPCS/ DEA certifications and provided important guidance to us over the past two years. Drummond’s team of experts and their certification processes gave us confidence in knowing that we are compliant with regulatory mandates and in supporting our practices in enhancing patient care.“
Amy HansenProduct Manager, IntrinsiQ Specialty Solutions
Amy Hansen
“Even as priorities shifted in response to a global pandemic, AWWA knew we could not be distracted from our commitment to the security of our customers’ data. Drummond was flexible in giving us just the help we needed to renew our PCI compliance.”
Mike HiskeyDirector of Information Technology, AWWA
Mike Hiskey

Special Offer

Get a FREE Vulnerability Scan With Your First Drummond HIPAA Gap Assessment
Learn More

Celebrate 25 Years of Trusted Expertise with Drummond

Trust is hard to come by.  Every business needs to build and protect their hard-won market trust. Drummond’s 25-Year legacy is built on a foundation of unwavering impartiality, expertise, and promotion of standards that drive secure and interoperable digital transformation. That’s why industry leaders, software developers, conformance professionals, and business owners turn to Drummond.

The Drummond Certified and Validated seals are more than symbols to indicate your products, services, or business has met rigorous compliance, security, or standards requirements—it is a testament to your unwavering commitment to providing innovative and secure solutions and services your customers can rely on.

The market trusts Drummond. What will you say when your customer asks, “Is It Drummond Certified?”

FREE EXPERT CONSULTATION

Do you have Compliance, Interoperability, or Security questions?
Book your FREE consultation with a Drummond expert and get answers.
Learn More

Drummond Group, LLC

3622 Lyckan Parkway, Suite #3003
Durham, NC 27707 USA

sales@drummondgroup.com
(877) 437-8666

Contact Us

Services
Resources
About Us
Privacy Policy
Cookie Policy
Terms of Use

© 2025 Drummond Group, LLC. All rights reserved. All brand names and trademarked logos used on this website are for identification purposes only and are the property of their respective owners. Their inclusion here does not imply endorsement, sponsorship, or affiliation with Drummond. All content, including text, images, graphics, and other materials, is protected by copyright law and may not be reproduced, distributed, or transmitted without prior written permission from Drummond Group, LLC.

DISCLAIMER: The services offered by Drummond Advisory Services are separate and distinct from the Drummond Group Test Lab and Certification Body. The purpose of Drummond Advisory Services is to provide expert support and guidance for the planning, analysis, and execution of certification activities; it does not negate the steps or required actions of the certification process. Use of Drummond Advisory Services does not guarantee successful ONC Health IT testing or certification.

MARKET STUDY

Securing AI: Creating Adoption-Ready Health IT Solutions

How EHR developers and healthcare providers are approaching AI and what they expect from developers.

Learn More