The need for additional certification

After earning HITRUST certification, Bruce Hoffman, Solera Health’s Chief Compliance Officer, started his search for an auditing firm to conduct a SOC 2 examination. Solera’s platform provides a marketplace of curated networks of digital and community point solutions focused on intensive, evidence-based lifestyle, behavioral, and social interventions to impact the most prevalent and costly chronic conditions. Being the experienced cybersecurity professional he is, Bruce knew continuous compliance is the future of cybersecurity, especially in the healthcare technology industry. He has lived and breathed technology his entire career, and understood the business necessity and sense of customer trust that is established when earning cybersecurity certifications.

Finding the best fit

In 2020, Bruce began his search for an auditing firm. He started by conducting an online search for the top auditing firms and narrowed them down based on customer references. “I spoke with several different A-LIGN professionals and everyone was knowledgeable, friendly and communicative,” said Bruce. “I immediately knew A-LIGN would be the best auditing partner for our company and the relationship just felt like a perfect match.”

Earning a SOC 2 report and HIPAA compliance

As soon as Solera Health partnered with A-LIGN, they immediately started the SOC 2 examination process. “A-LIGN did a phenomenal job and I was incredibly impressed with the auditing process,” said Bruce. “Their auditors made it easy for us and Solera has become A-LIGN’s biggest fan!”

With a background in technology, Bruce also found a great deal of value in A-LIGN’s audit automation and compliance software tool, A-SCEND. He felt that A-LIGN’s investment in a software tool to support the auditing process speaks volumes of their commitment to being relevant and cutting edge in the marketplace. “A-SCEND is a great tool that really elevates the compliance process,” said Bruce. “It made uploading and accessing evidence very easy, resulting in a smooth audit.”

Following their successful SOC 2 report, Solera Health decided to further continue their compliance journey and kick off a HIPAA assessment. “It was just natural for us to tap A-LIGN as our auditor for HIPAA and continue our relationship with the firm.” said Bruce. “Since we completed our SOC 2 with A-LIGN and uploaded all of our evidence into A-SCEND, the platform showed me that we were already 89% of the way to achieving HIPAA compliance. This was helpful information as utilizing the already uploaded evidence saved us time and resources!”

A lasting relationship

“With a flawless SOC 2 examination and streamlined HIPAA assessment, we plan to stick with A-LIGN as our auditing partner for a very long time,” said Bruce. Solera holds a three-year contract for SOC 2 and an annual contract for HIPAA compliance, and will therefore continue to work with A-LIGN year over year on their compliance journey.

Next steps

To learn more about how A-LIGN can help your organization through a variety of cybersecurity compliance assessments and audits, please visit www.a-lign.com/services or complete this form and an A-LIGN expert will reach out to you within 24 hours.

About Solera Health, Inc.

Solera Health, Inc. is committed to changing lives by guiding people to better health in their communities. The company has built a dynamic platform that provides intensive, evidence-based lifestyle and behavioral social interventions to impact the costliest chronic conditions in the country. Solera’s marketplace strategically matches consumers to curated disease prevention with a network of communication organizations and digital therapeutics providers to deliver the most meaningful health outcomes. Solera is HITRUST certified, the most prestigious certification for meeting healthcare regulations and requirements for protecting and securing sensitive private healthcare information. For more information, visit the company online: Solera Network.