Get Help Now

The Next Evolution In Patient Safety

It’s not just about HIPAA compliance any more – good cyber security can be the difference between life and death in healthcare. Ransomware attacks, cybercrime and hacking are directly affecting patient safety. If your EHR is compromised, you’ll have more than just a regulatory headache.
We know that crisis management is a way of life in healthcare – running from one emergency to another is what you’re good at. You take care of your patients, we’ll take care of your security.

GreyCastle Security is currently providing compliance and cybersecurity relief to health systems, teaching hospitals, regional medical centers, HIEs, mental health facilities, healthcare analytics providers, HIPAA Covered Entities (CEs) and Business Associates (BAs) throughout North America.

Let Us Be Your Cybersecurity Partner

Healthcare Services

HIPAA Security Training
Without proper cybersecurity awareness training, you can’t trust that employees are up to date on the latest cyber risks and how stay protected.

Learn More

ePHI Inventory
Our Data Classification & Asset Inventory are foundational elements of every cybersecurity program, enabling a simple understanding of your data.

Learn More

Incident Response
Our dedicated Computer Security Incident Response Team (CSIRT) helps organizations identify, detect, contain and eradicate incidents.

Learn More

HIPAA Compliance
Risk Management is important because cybersecurity is complex and it’s the foundation of HIPAA compliance.

Learn More

Business Continuity
Our Incident Response Development (IRD) service provides organizations with response plans that enable coordinated and organized responses.

Learn More

Healthcare Security Assessment

If you’re not sure how your HIPAA compliance and data security stack up against best practices, this free assessment is an excellent starting point. The assessment will provide high-level insight into your current security position and will provide steps you can take to correct potential compliance gaps.

HIPAA Compliance in



Conduct a HIPAA Risk Assessment

This standards-based (NIST SP 800-30, -53, and -66) is the fast and painless process for identifying and prioritizing your risks.

Develop a Corrective Action Plan

This step-by-step plan describes what you’re doing, when you’re doing it and who’s responsible for getting it done. It’s based exclusively on the risks from the assessment. This often overlooked artifact is required by regulators.

Demonstrate Effective Progress

This forward momentum is completely managed by our team of healthcare cybersecurity experts. We’ll do all of heavy lifting and help you document your progress.

Get Started


Code Blue Clear

GreyCastle Security responded to the largest ransomware attack in history at a level 1 trauma center in Buffalo, New York. The ransom payout was exactly zero dollars – but is this a zero-sum game?

It Depends.

While the impact from this vicious ransomware attack was unprecedented, most experts agree that Erie County Medical Center’s response was monumental – helping the organization avoid months of downtime and millions of dollars in losses.


Next Generation Patient Safety From An Executive Perspective

Healthcare has experienced many cyberattacks in the last few years. Making this a top safety issue in a healthcare organization is challenging – a challenge that executives must make a top priority.

Unlike any other business, healthcare leaders go to work every day with the knowledge that they have the ability to protect and enhance lives and unintentionally hurt them as well.



Higher Education


Financial Services






Let’s Discuss Your Cybersecurity Needs

Privacy Settings
We use cookies to enhance your experience while using our website. If you are using our Services via a browser you can restrict, block or remove cookies through your web browser settings. We also use content and scripts from third parties that may use tracking technologies. You can selectively provide your consent below to allow such third party embeds. For complete information about the cookies we use, data we collect and how we process them, please check our Privacy Policy
Consent to display content from Youtube
Consent to display content from Vimeo
Google Maps
Consent to display content from Google
Consent to display content from Spotify
Sound Cloud
Consent to display content from Sound
Contact Us