From compliance automation through audit, the Thoropass compliance delivery platform helps you get and stay compliant.
Modern audits delivered by expert auditors
Maintain compliance with real-time monitoring and alerts
Identify vulnerabilities with CREST-accredited pentest experts
Leverage AI for smarter compliance solutions
Streamline audits and improve accuracy with evidence automation
Simplify user reviews to enhance security
Automate responses to security questionnaires
Track and mitigate security risks in one place
Build trust with a professional, public-facing portal
Seamlessly connect your tools for streamlined compliance
Audits done the modern way. Leverage AI-powered compliance solutions with expert guidance for seamless, scalable audits.
From controls to audit, rapidly achieve infosec compliance with a single vendor
Manage your risk and streamline compliance
Meet your auditor on day 1 and eliminate any surprises
Discover proven compliance outcomes in the words of our customers.
Catch up on the latest industry trends and expert insights
Watch the latest webinar or meet us in person
Expert-curated resources for your compliance journey
A "true crime" styled podcast for anyone in the compliance industry
Actionable tools for your compliance journey
Implement audit-ready compliance solutions for friction-free infosec compliance outcomes.
Go beyond readiness with unmatched expertise
Stay updated with the latest Thoropass news and insights
Join the team that's reimagining compliance
Let's make compliance easier—together
We're committed to unbiased audits and superior service
Customer Stories / Medmo
Medmo is a healthcare platform for medical imaging, providing workflow solutions that simplify care for providers and patients. To gain customer confidence in handling patient health information, Medmo’s information security compliance needs to be top-notch.
Barak Poker, Medmo’s CTO, had big compliance requirements. As the business scaled to serve larger organizations, Barak needed proof that their product was secure.
In order to strengthen the company’s security posture, Barak needed to identify and remediate any potential security risks. He also needed all of their documentation organized to complete their SOC 2 audits and ongoing HIPAA compliance and be more prepared for audit requests. But Barak couldn’t do it alone.
Barak engaged Thoropass as a comprehensive compliance partner to conduct penetration testing and ensure readiness for both the SOC 2 and HIPAA frameworks. With a team of experts and an easy-to-use platform that streamlined the process, Barak found the support he needed to ensure the Medmo product was audit-ready.
“They fully understood what our application was, what our stacks were, what the breadth of each application was. I was really impressed by their organization and professionalism in terms of all their communications,” said Barak Poker, CTO at Medmo.
Thoropass’s experienced pentesters found several optimization opportunities, which were mostly focused on internal applications requiring high-level credentials. With Thoropass’s detailed reports and recommendations, Barak’s team was able to immediately run patches to optimize and further secure the Medmo platform.
Partnering with Thoropass allowed Barak to mitigate potential security risks and open the doors to new, larger customers. Now, when healthcare organizations ask for evidence of Medmo’s compliance, Barak has reports at the ready.
With ongoing compliance monitoring from Thoropass, Barak and his team know exactly what steps to take to keep risk at bay. Customers and stakeholders alike can have confidence in Medmo’s cybersecurity strategy.
Talk with one of our experts to build your custom path to compliance and take advantage of Thoropass’s thoughtful automation, expert guidance, and security audit experience.
ISO 27001, SOC 2
