< Back to case studies

Customer stories
Epiphany Healthcare

Epiphany Healthcare Data Management based in Virginia, USA supports over 950 hospitals and healthcare providers worldwide. Epiphany is dedicated to improving workflow within the healthcare industry and is currently the fastest-growing ECG management company in America. Eddie, the Information Security Manager was tasked with managing the certification to ISO27001 and chose a CertiKit toolkit to guide him and his team through the process.

Reason for certification

It was important for Epiphany to become certified for a number of reasons. “It is helping to re-enforce the trust Epiphany has gained from its global customers through a sincere and dedicated commitment to the protection of customer and patient data. As a provider of cloud-based software to healthcare organisations, we must remain vigilant when it comes to cyber-security and the protection of customer and patient data. The ISO/IEC 27001 standard has enabled us to develop a framework that focuses on remaining current with security methodologies.”

Finding the right solution

The biggest challenge was the time constraints in implementing the ISO27001 standard. The team needed a solution to speed up the process. With its comprehensive guides and template documents, a CertiKit toolkit was chosen. Eddie confirms, “the CertiKit toolkit was chosen because of the clear, informative writing style, ease-of-use customisable templates and unlimited email support.”

To understand the standard in-depth, Epiphany also purchased the CertiKit ISO27001 Enhanced Gap Assessment. This includes the exact wording of the standard broken down into an interactive spreadsheet to easily monitor compliance progress.

The process

The toolkit significantly increased internal knowledge. The business had eight colleagues available to work on the project part-time and they spent a combined 60 hours per week working through the compliance documents. The team gained valuable insight into how an Information Security Management System is best created and maintained. Working through the toolkit gave the team a broader perspective on reducing exposure to risks and providing insight on additional ways to protect the security of information.

Success!

From purchasing the toolkit to certification, it took Epiphany just eight months to certify to ISO27001. Eddie would recommend a CertiKit toolkit and certifying to the ISO27001 standard to other businesses. “It provided a better way for us to manage the tasks of policy building, organisation of the documents, and determining additional controls to adopt.” Congratulations to everyone involved!

“The CertiKit toolkit was chosen because of the clear, informative writing style, ease-of-use customisable templates and unlimited email support.”

Epiphany Healthcare, USA

Reviewing ISO 27001 Toolkit

The Results

Congratulations to Epiphany Healthcare

From purchasing the toolkit to certification, it took Epiphany just eight months to certify to ISO27001. Congratulations to everyone involved!

resources

Browse more customer stories

Saphetor SA shares how they benefited from an ISO27001 Document Toolkit and a Pre-certification Internal Audit from CertiKit.

MindCraft shares how the CertiKit ISO 27001 Toolkit helped them successfully implement the ISO 27001 standard.

Blue Phoenix Systems, an IT and cyber security services organisation based in Australia, use CertiKit toolkits with clients to help implement the ISO27001 standard.

Saphetor SA shares how they benefited from an ISO27001 Document Toolkit and a Pre-certification Internal Audit from CertiKit.

Read more
MindCraft shares how the CertiKit ISO 27001 Toolkit helped them successfully implement the ISO 27001 standard.

Read more
Blue Phoenix Systems, an IT and cyber security services organisation based in Australia, use CertiKit toolkits with clients to help implement the ISO27001 standard.

Read more

“The consistent formatting and style of the documents makes consolidation of various ISMS and Annex A documents very easy to achieve, reducing the overall size and complexity of the ISMS.”

Blue Phoenix Systems, Australia
“It makes a big difference, for the better, when the implementer does not need to second guess and double check every template and guidance document.”

DotSec, Australia
“The CertiKit toolkit was chosen because of the clear, informative writing style, ease-of-use customisable templates and unlimited email support.”

Epiphany Healthcare, USA
“Using the toolkit we were able to systematically pick through and deliver all of the documentation and process areas we needed, picking up the toolkit updates as we continued through the year. We have no doubt that using the toolkit decreased the time we spent during this initial phase and still supports part of the compliance work we do every year.”

Fishawack Health, Worldwide
“Our auditor said our documentation was very thorough and the CertiKit toolkit was key to passing our certification audit. Thank you for your support whenever we had questions. It was greatly appreciated as we tried to figure out this process.”

Focused Fitness, USA

Customer stories Epiphany Healthcare