From Compliance


Your dedicated team of healthcare cybersecurity experts.

Connected Medical Device & IoT Security Program

Close security gaps in your network by visualizing, assessing and protecting connected IoT and medical devices.

Learn More ›

HIPAA Risk Analysis

HIPAA Risk Analysis is a rigorous and detailed identification and prioritization of key risks currently facing our healthcare partners.

Learn More ›

Virtual Information Security Program (VISP)

Our Virtual Information Security Program is a customized approach to assessing and managing our clients’ cybersecurity posture over time.

Learn More ›

Security Information & Event Management (SIEM)

Fortified’s 24/7 monitoring facilitates HIPAA Security Rule compliance by utilizing custom-built reporting modules, macros, and taxonomies.

Learn More ›

Penetration Testing

Penetration Testing is a proven methodology that replicates real-world attack scenarios, testing your IT infrastructure so that you can protect confidential data from today’s ever-evolving threats.

Learn More ›

Data Loss Prevention (DLP)

Data Loss Prevention (DLP) gives you ultimate visibility into where and how your sensitive data is traversing your environment.

Learn More ›

Business Associate Lifecycle Management

Protect your data, manage risk, and empower third party relationships with a scalable, comprehensive vendor security program.

Learn More ›

HITRUST Assessment

Fortified Health Security is an approved HITRUST CSF Assessor. Our staff is prepared and experienced in providing certification, validation and self-assessment assistance services.

Learn More ›

Vulnerability Threat Management

Reduce data exposure risk and protect patient care with a complete managed solution for vulnerability identification and remediation.

Learn More
New for 2020!

Fortified's 2020 Horizon Report Details Latest Healthcare Cybersecurity Trends


Increased cyber attacks,
security breaches, and regulatory requirements are putting you at risk.

You need to protect your data, your patients and your reputation while ensuring compliance, but you don’t have the resources to do it alone. You need a team that knows healthcare and cybersecurity. Fortified Health Security can help you.

Healthcare — it's our sole focus.

That means we understand the value of your data, the regulatory pressures you face, and the need to make it all work within a budget.


With Fortified you have a dedicated force keeping you ahead of the threats and the regulations. Explore our industry-leading processes and technology.


Providing a clear path to meeting and exceeding regulatory requirements.


The right tools and processes to protect your data.


Robust security programs with extraordinary support custom-tailored to your needs.

Latest News
Kwampirs Trojan Targets Healthcare Industry

In response to the latest attack on the healthcare industry by the cybercriminal group Orangeworm, Fortified Health Security COO William Crank penned a commentary for the Disaster Recovery Journal – the leading industry resource for business continuity professionals covering disaster recovery, crisis management, and risk management. Throughout the article, Crank discusses what healthcare leaders should know about… View Article

HIPAA Changes Regarding COVID-19: What Healthcare Organizations Should Know

In light of the COVID-19 pandemic, the Department of Health and Human Services (HHS) and the Office of Civil Rights (OCR) have issued a Limited Waiver of HIPAA Sanctions and Penalties. While HIPAA regulations and protected health information (PHI) protections are still in place, it’s important that healthcare facilities understand what protocols the limited waiver… View Article

How to Maintain Cyber Security When Employees Work Remotely

With the spread of Covid-19 around the country, many organizations are sending employees home to work remotely. Doing so can be an essential health and safety precaution. However, remote work comes with additional cybersecurity threats. Here are some key ways that organizations can prioritize network security while employees are dispersed. Implement Network Access Control (NAC)… View Article