TRIMEDX Awarded SOC 2 Type 2 and International Organization for Standardization’s World-Class Information Management Security Certifications

Healthcare technology leader recognized for commitment to data security and operational excellence in technology and data development and control

TRIMEDX, an industry-leading, technology-enabled provider of clinical engineering, medical device cybersecurity and clinical asset management solutions to healthcare systems, announced today it has successfully achieved the Service Organization Control (SOC) 2 Type 2 certification for its solutions, as well as being awarded the highly regarded International Organization for Standardization’s Information Management Security certification ISO/IEC 27001:2013. Each certification verifies TRIMEDX’s operational policies and security controls for service delivery, technology development, and the rigor around the security of client data protecting it from internal and external threats.

“With the ever-evolving threat landscape, we have a responsibility to our clients to proactively and rigorously secure the data placed in our hands,” says TRIMEDX CEO Henry Hummel. “These widely recognized certifications confirm our commitment to protecting healthcare providers’ confidential data, ensuring patient safety, and demonstrating operational excellence and rigor around technology and data development and control.”

ISO 27001 provides requirements to companies seeking to implement a comprehensive information security management system (ISMS) to effectively provide security of information assets, through a systematic risk management process covering people, processes and information technology systems. Meeting the standard demonstrates TRIMEDX’s achievement of world-class safety and security management of information.

Taking the commitment to quality a step further, SOC 2 Type 2―a stringent, third-party industry standard among service organizations that handle client data―is designed to protect the safety and security of the data and its storage. At the core of TRIMEDX’s comprehensive clinical asset management solution is RSQ, a proprietary computerized maintenance management system that houses client data on over 4.4 million clinical assets. The achievement of SOC 2 Type 2 compliance showcases TRIMEDX’s visibility into client data and the associated safety and security controls in place to protect it, which has been successfully audited and proven effective by an independent third-party. The SOC 2 Type 2 certification validates TRIMEDX’s ability and commitment to protecting this data.

“This is a clear signal to our clients, the industry and regulators that TRIMEDX takes security and safety seriously and has made a significant investment and commitment in adopting ISO 27001 and SOC 2 Type 2 into our culture and how we operate as a business,” says Doug Folsom, President, Cyber Security & Chief Technology Officer.

The announcement of these industry certifications follows TRIMEDX’s ongoing commitment to excellence through the acquisition of Centurion Service Group, allowing TRIMEDX clients to gain maximum value from their excess medical equipment. To learn more about TRIMEDX and its offerings, visit



TRIMEDX is an industry-leading, independent clinical asset management company in the United States delivering comprehensive clinical engineering services, clinical asset informatics and medical device cybersecurity. We help healthcare providers transform their clinical assets into strategic tools, driving reductions in operational expenses, optimizing clinical asset capital spend, maximizing resources for patient care, and delivering improved safety and protection. TRIMEDX was built by providers, for providers, and leverages a history of expert clinical engineering with data on 92% of all active medical device models.

Media Contact