At Digirad, we operate in a truly unique space – one that bridges everything from single-physician clinics to sprawling, multi-campus hospital systems. This diversity brings with it a wide range of technology environments, compliance standards, and levels of cybersecurity maturity.
In many of the smaller clinics, security and compliance aren’t top of mind. That’s understandable – many of these organizations don’t have full-time IT resources or dedicated security programs. But that doesn’t mean we let our guard down. We’ve made it a core part of our mission to deliver secure, compliant, and high-quality service no matter what the customer’s internal posture looks like. Because ultimately, protecting patient data and ensuring operational reliability isn’t just good business – it’s the right thing to do.
That said, the landscape is evolving.
Enter HITRUST
One of our major customers in the Northeast is owned by United Health Group (UHG) – an industry giant with some of the strictest security and compliance requirements in the country. Recently, UHG informed us (along with their other vendors) that all third-party providers will soon be required to hold a HITRUST certification.
So what exactly is HITRUST?
HITRUST (short for the Health Information Trust Alliance) is a comprehensive security and privacy framework specifically designed for organizations that handle sensitive healthcare data. It integrates and harmonizes multiple industry standards – including HIPAA, NIST, ISO, and GDPR – into a single certifiable framework.
In short, it’s the gold standard for healthcare data protection – and achieving it is no small task.
Why This Matters to Digirad
For Digirad to grow – especially in large-scale hospital systems and enterprise-level healthcare networks – we need to match (or exceed) the standards of the biggest players in the space. HITRUST is not just a box to check. It’s a strategic investment in our systems, our people, and our future.
We’re thrilled to share that pursuing HITRUST certification is now a company-wide initiative.
This is our opportunity to harden our infrastructure, formalize processes, and put IT at the heart of our growth strategy. It’s also a chance to reposition Digirad as more than just a mobile imaging provider. This is about becoming a technology-first healthcare organization – one that leads not only in services but in product innovation and operational excellence.
The Team Leading the Charge
To make this happen, we’re expanding and realigning our team.
-
Patrick Struthers has officially been named our Information Security Officer, and HITRUST certification will be his primary initiative in 2021. He’s already begun laying the groundwork for what will be a full organizational transformation.
-
We’ve also partnered with Kamal Govindaswamy, a seasoned expert and old associate from my days at Recondo. Kamal and his firm, Tueoris, bring deep experience in guiding healthcare organizations through complex compliance and security frameworks. We’re thrilled to have him on board.
From Foundation to Future
Historically, IT at Digirad has been underdeveloped – and that’s exactly why we’re here. We’ve already made huge strides with our cloud migration, network overhaul, and team building. HITRUST is the next logical step – and one that will push us further into operational maturity.
This will be a full-company effort. It will require process change, policy development, staff training, and technology optimization. It’s going to be hard work – but it’s work that matters.
We’re ready for it. And we’re excited.
Here’s to raising the bar – and building something better.
– Vince