Nordic Consulting Achieves HITRUST Risk-based, 2-year Certification


HITRUST Risk-based, 2-year Certification validates Nordic Consulting’s commitment to meeting key regulations and protecting sensitive information.


Madison, Wis. – Nordic Consulting, a global health and technology consulting company, today announced it has received certification from HITRUST via the Risk-Based 2-year validation process.

HITRUST Risk-based, 2-year (r2) Certified status demonstrates that the organization’s platform hosted in the Microsoft Azure Cloud platform, as well as its headquarters in Madison, WI, has met key regulations and industry-defined requirements and is appropriately managing risk. This achievement places Nordic in an elite group of organizations worldwide that have earned this certification. By including federal and state regulations, standards, and frameworks, and incorporating a risk-based approach, the HITRUST Assurance Program helps organizations address security and data protection challenges through a comprehensive and flexible framework of prescriptive and scalable security controls.

jeff_buss“We take security very seriously at Nordic. Our clients demand the highest levels of compliance, security, and privacy in every facet of their operations, and they trust us to deliver on those critical needs,” said Nordic Chief Information Officer Jeff Buss. “We are pleased to demonstrate to our clients the highest standards for data protection and information security by achieving HITRUST Risk-based, 2-year Certification.”

“In today’s ever-changing threat landscape, HITRUST is continually innovating to find new and creative approaches to address challenges,” said Jeremy Huval, Chief Innovation Officer, HITRUST. “Nordic Consulting’s HITRUST Risk-based, 2-year Certification is evidence that they are at the forefront of industry best practices for information risk management and compliance.”