Blog Archives - Page 2 of 11

Your Vulnerability Scans Are Leaving Gaps

Vulnerability scanning is not optional for regulated organizations. If you are subject to PCI DSS, HIPAA, or SOC 2, regular scanning is a baseline requirement. The real question is whether

How the HTI-5 Proposed Rule Affects ONC Certification

In December 2025, the U.S. Department of Health and Human Services released the Health Data, Technology, and Interoperability: commonly referred to as HTI-5. The proposal represents one of the most

The Hidden Costs of Fast Compliance

The compliance community has been paying close attention to a recent article detailing allegations that a platform offering a fast, low-cost path to SOC 2 and HIPAA readiness may have

ONC Certification Explained: Who Does What and Why It Matters

Here is something that surprises many health IT developers: The Office of the National Coordinator for Health Information Technology (ONC) does not actually certify your product. It does not test

SCRIPT 2023 and EPCS Certification FAQs

NCPDP SCRIPT Standard Implementation Guide Version 2023011 (SCRIPT 2023) has been on the radar for a while. Most teams working in e-prescribing know it is coming, know the January 1,

Don’t Be the Next Cautionary Tale in Healthcare Security

Researchers at mobile security firm Oversecured scanned ten Android mental health apps with a combined 14.7 million downloads on Google Play. What they found should make any HIT developer uncomfortable:

Annual Penetration Testing Is a Business Advantage

Two companies. Same industry. Same regulatory requirements. Both conduct penetration testing. One does it when an auditor requires it. The other does it every year, as part of their internal

Implementing SCRIPT 2023: A Practical Guide for Developers

SCRIPT 2023 represents a major shift in how e-prescribing data is structured and exchanged. Understanding what is new in the standard is important, but for vendors, it is only the

SCRIPT 2023: Key Enhancements Vendors Need to Know

SCRIPT Standard 2023011 delivers one of the most significant updates to e-prescribing in years, introducing structural and functional changes that strengthen interoperability, elevate data accuracy, and support more clinically relevant

Search

The Hidden Costs of Fast Compliance

Why Both HIPAA and ONC Health IT Certification Matter in Building Trustworthy Digital Health

Supporting Lean Teams: How the Right Partner Simplifies HIPAA Compliance

The Compliance Cliff Every Telehealth Platform Encounters

Real-World Interoperability Assurance with FHIRplace

CMS Prior Authorization Pledge

The Compliance Cliff Every Telehealth Platform Encounters

Real-World Interoperability Assurance with FHIRplace

CMS Prior Authorization Pledge

Your Vulnerability Scans Are Leaving Gaps

Why Prior Auth API Certification Matters Now

Why Poor AI Governance Is a Bottom-Line Risk for Healthcare

Category: Blog

Your Vulnerability Scans Are Leaving Gaps

How the HTI-5 Proposed Rule Affects ONC Certification

The Hidden Costs of Fast Compliance

ONC Certification Explained: Who Does What and Why It Matters

SCRIPT 2023 and EPCS Certification FAQs

Don’t Be the Next Cautionary Tale in Healthcare Security

Annual Penetration Testing Is a Business Advantage

Implementing SCRIPT 2023: A Practical Guide for Developers

SCRIPT 2023: Key Enhancements Vendors Need to Know

FREE EXPERT CONSULTATION

Drummond Group, LLC