Inspiring a Better Healthcare System

The Client
As one of the largest, independent healthcare technology companies in the United States, Change Healthcare works alongside its customers and partners to enable better patient care, choice, and outcomes at scale. Change Healthcare has increased capabilities for innovation, investment, and customer service through providing software and analytics, network solutions, and technology-enabled services. With its broad portfolio of solutions, Change Healthcare serves the needs of commercial and governmental payers, employers, hospitals, physicians, laboratories, and consumers.

By the numbers, Change Healthcare is made up of a 19,000-member team, approximately 2,100 payer connections that reach nearly all U.S. government and commercial payers, and a network of 5,500 hospitals and more than 800,000 physicians helping health system leaders achieve strategic objectives— just to name a few. Above all, Change Healthcare prides itself in helping to create a stronger, better-coordinated, increasingly collaborative, and more efficient healthcare system.

The Opportunity
Due to the nature and volume of sensitive data that Change Healthcare oversees with its clients in the healthcare industry, there was an obvious need to partner with a trusted information security service provider to assist with quarterly security scanning assessments, risk assessments, penetration testing, payment card industry data security assessments, FISMA audits, security consulting, and IT compliance and audit. LBMC Information Security was the best match for Change Healthcare when they began to seek these services over six years ago. “Through assisting us with these required assessments, LBMC Information Security makes sure we are always compliant with current regulations,” says Allen Hughes, Director of IS and Regulatory Compliance. 

In addition, LBMC Information Security was also able to offer security strategy services, as well as strategic direction for compliance frameworks to Change Healthcare’s IT team. “LBMC Information Security has also given us a unique seat at the table with Health Information Trust Alliance (HITRUST) certification, which allows healthcare entities to demonstrate compliance with a number of standards and regulations,” says Haddon Bennett, Change Healthcare’s Chief Information Security Officer. “LBMC’s healthcare industry expertise has been invaluable to us throughout our relationship.”   

The Solution
Change Healthcare especially values LBMC Information Security’s accessibility and personal approach. “With LBMC Information Security, you get a 'Big 4' type of business without the extreme costs. The local access and level of service they offer is no comparison to those large, national service providers,” affirms Hughes. When it comes to what makes the partnership work between LBMC Information Security and Change Healthcare, Change Healthcare’s Vice-President of Information Security Risk Management Mike Swyt says, “LBMC Information Security is very flexible and accommodating to our specific needs at Change Healthcare. With the quality of service and affordability of rates LBMC Information Security offers, we are better enabled to focus on our daily business needs.” Through the variety of services provided to them, Change Healthcare appreciates how LBMC Information Security helps the company attain, demonstrate, and maintain compliance with key security regulations and make well-informed decisions about information security risks facing the organization.