ESP @ Work: Enabling Always-on Compliance for Electronic Health Record Company

“Before ESP, preparing for our annual compliance audit would be an 11 month cycle. With ESP we can view our state of compliance in near real time.” – Principal Architect for HIPAA Compliance at Electronic Health Record Company

Electronic Health Record Company invests in ESP for Continuous Compliance.


With ESP, the Electronic Health Record Company was able to aliviate the heavy lifting of compliance and reduce their time-to-audit from an 11 month cycle to the click of a button.

Customer Profile

The largest, free web-based electronic health record (EHR) company with more than 112,000 monthly active medical professionals and 81 million patients. Their mission, is to connect doctors, patients and data to drive better health and save lives. The Electronic Health Record Company provides physicians and medical professionals with free, advertising-supported EHR and medical practice management technology that includes charting, scheduling, e-prescribing (eRx), medical billing, lab and imaging center integrations, referral letters, Meaningful Use certification, training, support and a personal health record for patients.


Electronic Health Record Company’s team were looking to expand security team to support their AWS cloud infrastructure, they needed a tool that would help to increase the efficiency and productivity of their existing team. As a web-based electronic health record repository, they are responsible for the storage, security and protection a lot of very sensitive information. It was critical for the Electronic Health Record Company to find solution that would simplify and automate their compliance requirements.


The Electronic Health Record Company selected the Evident Security Platform (ESP) as an automation tool to continuously monitor vulnerabilities in their AWS infrastructure, saving them time and money. ESP fit all of their requirements, specifically:

  • Inexpensive to operationalize, maintain and support. Time to value must be immediately quantifiable and visible.
  • An open, flexible architecture that can grow, adapt and integrate seamlessly with a fast moving AWS cloud environment and business change.
  • Provide compliance reporting and constant checking against an Industry Framework.


Even during the initial trial phase, ESP helped the Electronic Health Record Company  be compliant with regard to the AWS shared services model and CIS AWS Security Best Practices, by automating the exposure and remediation of vulnerabilities in AWS. The Electronic Health Record Company’s time-to-audit has dropped from an 11 month cycle to the click of a button. By employing ESP’s real-time continuous security visibility, auditing and validation engine for of all of their AWS environments, they can be confident in their ability to pass compliance frameworks like CIS AWS Foundations benchmark and HIPAA.

Learn more

To find out more about how our technology can empower you to solve this problem visit our website. ESP provides a single pane of glass view of all of your AWS accounts, regions and services in one easy to customize dashboard. By consuming all of Amazon’s APIs, ESP can detect and uncover vulnerabilities in your environment and alert security teams of configuration changes and policy violation and provide a path to remediation.

You can try ESP free for 14 days and start securing your cloud infrastructure within minutes. You can use the tool on your own, just signup and get started — or we can help you along the way. It’s your choice.

About this ESP @ Work Blog Series

ESP @ Work provides insight into real customer implementations. These snapshots describe how Evident Security Platform (ESP) helps our customers maintain and benefit from continuous security and compliance in the cloud. All ESP @ Work posts are anonymous because we respect that our customers are not always able to publicly share their success.

About Alison Arnott

Alison Arnott is the Director of Marketing at Her career as a marketing leader spans over 10 years with international experience across marketing communications, demand generation and product marketing leadership roles at both high-growth software startups and Fortune 1000 companies. Alison brings a great mix of creative, strategic thinking and tactical execution.

More posts by Alison

Tags: , ,