Our Story

BluePrint Health Information Security, an Intraprise Health business, has been a leader in healthcare privacy and security for over a decade. Unlike many other information security companies, we are 100% focused on serving the needs of healthcare providers and business associates. BluePrint was one of the first organizations to publish a comprehensive roadmap for hospitals and health systems to comply with the HIPAA Security rule in 2005. Since that time, BluePrint has worked as a trusted partner with dozens of healthcare systems, medical centers, physician networks, business associates and hospital associations to help protect their healthcare data.

In 2010, the year following enactment of the HITECH Act, which launched Meaningful Use, BluePrint was invited to present to the staff of the reinvigorated Office of the National Coordinator (ONC) in Washington, DC. BluePrint presented the challenges facing healthcare CIOs and Chief Information Security Officers (CISOs) who encountered the need to manage increasing risk to healthcare data and comply with an enlarged regulatory footprint. In subsequent years, BluePrint has also been engaged by state designated entities, such as the ONC-sponsored Regional Extension Centers and several state HIT Coordinators’ offices, to present to their constituents.

To ensure improved security built within a solid framework, we developed a consistent, repeatable and comprehensive program to address the wide-range of regulatory requirements necessary to solve growing complexities.  Both migration to the Cloud and cyber threats are increasingly impacting our clients. Coupled with regulations under HIPAA, Meaningful Use, PCI, COBIT and ISO, healthcare covered entities and business associates need to effectively manage a vast number of security controls.

In 2011, BluePrint became the first healthcare-only firm to achieve HITRUST (Health Information Trust) Certified Assessor status following rigorous  evaluation by the HITRUST Alliance. HITRUST has become recognized as the “gold-standard” in security frameworks for healthcare. All of our clients benefit from its inclusion within our core methodology.

BluePrint is often asked to present the latest trends and threats surfacing in the industry due to our leadership position, proven success and market longevity. We speak to Boards on behalf of our client sponsors to provide perspective and discuss strategies to help support the broad-based needs of the healthcare community.

We stay committed to our clients before, during and after the analysis phase. Our goal is not just to identify issues, but to help our clients resolve them. We're focused solely on healthcare security. We understand the journey clients need to making through risk management and development of their comprehensive security approach. Our programs are structured to ensure the privacy and security of health IT’s greatest asset - its data. That data can support coordinated care and innovation and be used to achieve the goals of the Triple Aim.